86fa9e37983e84f4f9692bd6d6f41981a3efaf8e34e83c21226fb226b525d38c

Sharing

Copy URL Twitter E-mail

General

Target

86fa9e37983e84f4f9692bd6d6f41981a3efaf8e34e83c21226fb226b525d38c
Size

407KB
MD5

9a6ec90cf5ca59faf6dec51b9dfe90ed
SHA1

9ce0707046ddcbb10dec27eea8a7df461bcb7514
SHA256

86fa9e37983e84f4f9692bd6d6f41981a3efaf8e34e83c21226fb226b525d38c
SHA512

4fee00f4973529bd3d3369dd897004699e5f0ba9dfcd6c953dc90996a744cc36664b6f618c5e658edf2ea248724d3eb67846aa19409f95c3bcdef6dc2cf94dba
SSDEEP

6144:KNHSpz5yhd/tfoG7F7HsK3HImul3pZHkd6evzIwswNOOKw2d8ZQ7G4f:Cypz5AZtfoGJ7N3HkHkdLdR24IG4

Score

N/A

Malware Config

Signatures

Files

86fa9e37983e84f4f9692bd6d6f41981a3efaf8e34e83c21226fb226b525d38c
.dll windows x86

335d4585879b59c4816c78a63834bcdf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetUserDefaultUILanguage
GetVersion
GlobalFree
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByte
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadResource
LockResource
MultiByteToWideChar
OutputDebugStringA
GetSystemTimeAsFileTime
ReleaseMutex
RtlUnwind
SetThreadContext
SetThreadExecutionState
SetupComm
SizeofResource
TerminateProcess
TryEnterCriticalSection
UnhandledExceptionFilter
VirtualAlloc
WaitForMultipleObjects
WaitForSingleObject
GetProcessPriorityBoost
CloseHandle
GetProcessAffinityMask
GetModuleHandleA
GetMailslotInfo
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCurrentConsoleFont
GetCommandLineA
GetCommConfig
FreeLibrary
FlushConsoleInputBuffer
ExitProcess
EnterCriticalSection
DisableThreadLibraryCalls
CreateThread
CreateMutexA
CreateFileA
QueryPerformanceCounter

advapi32

LsaQuerySecurityObject
RegEnumKeyExA
RegQueryValueExA
CloseTrace

dinput

DirectInputCreateA

msvcrt

_j0
_msize
_stricmp
_unlock
_vsnprintf
_wfindfirsti64
floor
free
iswspace
qsort
sqrt
tan
tolower
wcscpy
_initterm
_finite
_atoi64
_amsg_exit
__p__winver
__RTDynamicCast
__CxxLongjmpUnwind
_XcptFilter
_Gettnames
_CxxThrowException
_CIsqrt
_CIcos
_CIatan
_CIacos

gdi32

GetObjectA
GetTextMetricsA
ExtTextOutA
SetBkMode
SetTextAlign
CreateFontIndirectW
ExtTextOutW
DeleteDC
CreateFontIndirectA
CreateDIBSection
CreateCompatibleDC
GetTextMetricsW
CloseFigure

ole32

CreateStreamOnHGlobal

Exports

Exports

InPlaceAdd
List_Sort
set_IHDR
vGetFileA

Sections

.text
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 249KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

335d4585879b59c4816c78a63834bcdf

Headers

File Characteristics

Imports

kernel32

advapi32

dinput

msvcrt

gdi32

ole32

Exports

Exports

Sections

.text Size: 61KB - Virtual size: 61KB

.rdata Size: 249KB - Virtual size: 248KB

.data Size: 70KB - Virtual size: 71KB

.rsrc Size: 21KB - Virtual size: 21KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 61KB - Virtual size: 61KB

.rdata
Size: 249KB - Virtual size: 248KB

.data
Size: 70KB - Virtual size: 71KB

.rsrc
Size: 21KB - Virtual size: 21KB

.reloc
Size: 4KB - Virtual size: 3KB