06748e4d13cf4e883c46b33c471120e17a1e59565c339d59a34f73d38ae4944b

Sharing

Copy URL Twitter E-mail

General

Target

06748e4d13cf4e883c46b33c471120e17a1e59565c339d59a34f73d38ae4944b
Size

410KB
MD5

dea5e0fa542b44c333ca8249903b78c0
SHA1

1b3efe06a0460342cc5d1dbd9a9d88f84703390e
SHA256

06748e4d13cf4e883c46b33c471120e17a1e59565c339d59a34f73d38ae4944b
SHA512

8eb6e5e720a1731c9064bfc2efc3b856d8ad9186ed4191a09aee70abc2238205775cc1a8c38663296564ba12b267d5f85ba0263e63b24c254306343e1c0f5896
SSDEEP

6144:PolMuXZhq12zQgX668YFdFSNw/WIh550UeXT4GY2yFKLtzKY:Qnph+2zQgX6XKhJ55iDpnyFKLtzKY

Score

N/A

Malware Config

Signatures

Files

06748e4d13cf4e883c46b33c471120e17a1e59565c339d59a34f73d38ae4944b
.dll windows x86

2f28eb639763a367adc03f22a86a4b8d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableWindow
GetAncestor
GetDlgItem
GetFocus
GetParent
GetSystemMetrics
MessageBoxW
MsgWaitForMultipleObjects
SendDlgItemMessageW
SendMessageW
SetWindowLongW
ShowWindow
CheckDlgButton

ntdll

NtQueryInformationProcess
NtQuerySystemInformation
NtSetSystemInformation
RtlInitUnicodeString
RtlNtStatusToDosError
RtlUnicodeStringToInteger
RtlUnwind

advapi32

RegOpenKeyExW
LookupPrivilegeValueW
RegSetValueExW
RegQueryValueExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
OpenProcessToken
AdjustTokenPrivileges

comctl32

PropertySheetW

kernel32

HeapAlloc
GetVersionExW
GetTickCount
GetSystemTimeAsFileTime
GetProcessPriorityBoost
GetProcessHeap
GetProcAddress
HeapFree
GetModuleHandleA
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
FreeConsole
InterlockedCompareExchange
InterlockedExchange
LoadLibraryA
QueryPerformanceCounter
ResumeThread
SetLastError
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
WriteProcessMemory
GetModuleHandleW
CloseHandle
CreateProcessW
ExitProcess

Exports

Exports

CountEntries
FindShaderComment
MarkerCallbackProxy
SHMultiply3
SetObjectAttributes
SetWMFResolution

Sections

.text
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 190KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f28eb639763a367adc03f22a86a4b8d

Headers

File Characteristics

Imports

user32

ntdll

advapi32

comctl32

kernel32

Exports

Exports

Sections

.text Size: 78KB - Virtual size: 77KB

.rdata Size: 190KB - Virtual size: 189KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 68KB - Virtual size: 68KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 78KB - Virtual size: 77KB

.rdata
Size: 190KB - Virtual size: 189KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 68KB - Virtual size: 68KB

.reloc
Size: 5KB - Virtual size: 4KB