94f449b37cad70b6cc6d07acfe6adfdef155ccc92b54bbbeea9c10661ca48c9d

Sharing

Copy URL

Twitter E-mail

General

Target

94f449b37cad70b6cc6d07acfe6adfdef155ccc92b54bbbeea9c10661ca48c9d
Size

2.2MB
MD5

3322d5bd1ba26dc7664018b60e71aa35
SHA1

25d13ef9d44057435e5898952a171c90222bcb92
SHA256

94f449b37cad70b6cc6d07acfe6adfdef155ccc92b54bbbeea9c10661ca48c9d
SHA512

0a3c99b7d68fca2c058b1c9d2b33c27ba204a5df69d4fc6041ad4d70e4ac5ddc90fd6822843bf27521df825c5504e481849b9e751404b123cb31fbfebe66f0d2
SSDEEP

49152:gHwBE+vwxlVEMQ9Ifbhsa2mL89PZliEFJM61P:gMrv+VSefb+a2mLGZliM3

Score

N/A

Malware Config

Signatures

Files

94f449b37cad70b6cc6d07acfe6adfdef155ccc92b54bbbeea9c10661ca48c9d
.exe windows x86

b30da16efcec199ab25e9bc4d903b6cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

d3d9

Direct3DCreate9

kernel32

OutputDebugStringA
GetSystemInfo
IsProcessorFeaturePresent
GetModuleHandleA
WriteFile
GetLastError
MapViewOfFile
GetFileSize
CreateFileMappingA
CreateFileA
CreateFileW
WideCharToMultiByte
GetVersionExA
CloseHandle
UnmapViewOfFile
LockResource
LoadResource
FreeLibrary
FindResourceA
FindResourceW
GetFullPathNameA
lstrcmpiA
HeapAlloc
GetProcessHeap
HeapFree
CompareStringA
GetTimeZoneInformation
GetLocaleInfoW
SetConsoleCtrlHandler
SetEndOfFile
GetDateFormatA
GetTimeFormatA
IsBadCodePtr
IsBadReadPtr
LoadLibraryA
GetProcAddress
DeleteFileA
QueryPerformanceCounter
QueryPerformanceFrequency
Sleep
CompareStringW
SizeofResource
RtlUnwind
ExitProcess
GetStartupInfoA
GetCommandLineA
SetEnvironmentVariableA
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
RaiseException
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
GetCPInfo
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
InterlockedExchange
VirtualQuery
ReadFile
SetFilePointer
GetFileAttributesA
VirtualProtect
SetStdHandle
FlushFileBuffers
GetACP
GetOEMCP
SetUnhandledExceptionFilter

user32

DefWindowProcA
SetRect
LoadIconA
RegisterClassExA
AdjustWindowRect
CreateWindowExA
ShowWindow
UpdateWindow

gdi32

CreateDCA
ExtEscape
DeleteDC
DeleteObject

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyA

Sections

.text
Size: 688KB - Virtual size: 684KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b30da16efcec199ab25e9bc4d903b6cb

Headers

File Characteristics

Imports

d3d9

kernel32

user32

gdi32

advapi32

Sections

.text Size: 688KB - Virtual size: 684KB

.rdata Size: 104KB - Virtual size: 101KB

.data Size: 112KB - Virtual size: 126KB

.rsrc Size: 1.3MB - Virtual size: 1.3MB

.text
Size: 688KB - Virtual size: 684KB

.rdata
Size: 104KB - Virtual size: 101KB

.data
Size: 112KB - Virtual size: 126KB

.rsrc
Size: 1.3MB - Virtual size: 1.3MB