2034f8024cd93c3d2226586bd6d2591bca7c5ada479badc69a526cc51f6a0932

Sharing

Copy URL Twitter E-mail

General

Target

2034f8024cd93c3d2226586bd6d2591bca7c5ada479badc69a526cc51f6a0932
Size

407KB
MD5

966aeca38516298b4d8d47b7a8e6c382
SHA1

0da74dd88b3de4ec231f4de3b839995d68d07557
SHA256

2034f8024cd93c3d2226586bd6d2591bca7c5ada479badc69a526cc51f6a0932
SHA512

fd7d93e8e87e1dcb3852bcfe614c17cf2bda3f93794df7efa532fc7ca68623822b16d54b10d6e935c68ba568f4415a4ffd8e1250d7ea0351aacd713d971c5cae
SSDEEP

12288:fd/t93slyvETQl6vL9E+DRCghO49MaT/Tp18Hl:1/t98jL9ENghOUvzT/8F

Score

N/A

Malware Config

Signatures

Files

2034f8024cd93c3d2226586bd6d2591bca7c5ada479badc69a526cc51f6a0932
.dll windows x86

dca032ed76c055d978b5dde7b16b36bf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetVersion
GlobalFix
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsBadHugeWritePtr
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadResource
LockResource
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
GetSystemTimeAsFileTime
ReadFile
ReleaseMutex
RtlUnwind
SetFileApisToOEM
SetSystemTime
SetUnhandledExceptionFilter
SetWaitableTimer
SetupComm
SizeofResource
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteFile
GetProcessPriorityBoost
GetProcessAffinityMask
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
CloseHandle
GetLastError
GetFullPathNameW
GetFileType
GetFileSizeEx
GetFileSize
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCommandLineA
FreeLibrary
FindResourceW
FindResourceA
ExitProcess
EnterCriticalSection
DisableThreadLibraryCalls
DeleteCriticalSection
DebugBreak
CreateThread
CreateMutexA
CreateFileA
CreateConsoleScreenBuffer
QueryPerformanceFrequency

gdi32

TranslateCharsetInfo
SetTextColor
SetBkMode
SetBkColor
SelectObject
MoveToEx
GetWinMetaFileBits
GetTextMetricsW
GetTextMetricsA
GetObjectW
GetObjectA
GetGlyphOutlineA
GetFontLanguageInfo
GetColorAdjustment
GetCharacterPlacementA
ExtTextOutW
ExtTextOutA
DeleteDC
CreateRectRgnIndirect
CreateFontIndirectA
CreateDIBSection
CreateCompatibleDC
DeleteObject

advapi32

SystemFunction001
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey

ole32

CreateStreamOnHGlobal

msvcrt

_purecall
tolower
_CIacos
_CIatan
_CIatan2
_CIcos
_CIsin
_CIsqrt
_CxxThrowException
_XcptFilter
__CxxFrameHandler
__RTDynamicCast
__dllonexit
_amsg_exit
_controlfp
_finite
_fullpath
_initterm
_isnan
_lock
_mbscspn
_mbsrchr
_onexit
_stricmp
_unlock
_vsnprintf
_vsnwprintf
_wcmdln
_wcreat
_wexeclpe
calloc
floor
free
iswalpha
iswdigit
iswpunct
iswspace
malloc
mbtowc
memcpy
memmove
memset
qsort

Exports

Exports

CreateTextA
CreateTextureGutterHelper
CreateVolumeTextureFromFileA
LoadSurfaceFromFileA
LoadVolumeFromResourceW
MatrixMultiplyTranspose

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 203KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dca032ed76c055d978b5dde7b16b36bf

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

ole32

msvcrt

Exports

Exports

Sections

.text Size: 64KB - Virtual size: 63KB

.rdata Size: 203KB - Virtual size: 203KB

.data Size: 70KB - Virtual size: 71KB

.rsrc Size: 64KB - Virtual size: 64KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 203KB - Virtual size: 203KB

.data
Size: 70KB - Virtual size: 71KB

.rsrc
Size: 64KB - Virtual size: 64KB

.reloc
Size: 3KB - Virtual size: 3KB