81a1414c688a4a10006a669404b264713cc486fa575f5355ed2baaa9eb8cefff

Sharing

Copy URL Twitter E-mail

General

Target

81a1414c688a4a10006a669404b264713cc486fa575f5355ed2baaa9eb8cefff
Size

418KB
MD5

ead96f4f809f5d18837cc0b6e9a0c6b0
SHA1

de39ef597e000955df4bc65a9fac05666dc3a336
SHA256

81a1414c688a4a10006a669404b264713cc486fa575f5355ed2baaa9eb8cefff
SHA512

843525e71a55c67f0d91e93c7599aaafa2995e36446ecd7eb501fe64e248f3864b02f1a66688a448711aaee78a608b8dfaf5a988b9b68d9b3e96f541b3059926
SSDEEP

12288:6lsSnPWtbHxUZTQ+tWJJYqXmSb8Z6BW3x:6lsfbHxUZ/MYqXmkbW3

Score

N/A

Malware Config

Signatures

Files

81a1414c688a4a10006a669404b264713cc486fa575f5355ed2baaa9eb8cefff
.dll windows x86

7904d1abace88d91db80e7d470d59881

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

dinput

DirectInputCreateA

kernel32

LoadLibraryA
MapUserPhysicalPages
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
ReadFile
ReleaseMutex
RtlUnwind
SetThreadContext
SystemTimeToTzSpecificLocalTime
TerminateProcess
TryEnterCriticalSection
UnhandledExceptionFilter
VirtualAlloc
WideCharToMultiByte
WriteTapemark
LeaveCriticalSection
IsProcessorFeaturePresent
InterlockedIncrement
InterlockedExchange
InterlockedCompareExchange
CreateMutexA
CreateThread
DisableThreadLibraryCalls
EnterCriticalSection
GetVersion
ExitProcess
FindResourceA
FreeLibrary
GetCommProperties
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFullPathNameW
GetLastError
GetMailslotInfo
GetModuleHandleA
GetProcessAffinityMask
CreateFileA
GetProcessPriorityBoost
GetSystemTimeAsFileTime
GetTickCount

advapi32

RegEnumKeyExA
RegQueryValueExA
SystemFunction041
RegCloseKey

msvcrt

_unlock
_vsnprintf
floor
free
iswalpha
iswprint
iswpunct
iswspace
malloc
memcpy
memmove
puts
qsort
tolower
_stricmp
_outp
_j0
_initterm
_finite
_execve
_controlfp
_atoi64
_amsg_exit
__threadhandle
__p__winver
__dllonexit
_XcptFilter
_Strftime
_CxxThrowException
_CIsqrt
_CIcos
_CIatan
_CIasin
_CIacos
_isnan
_CIsin

gdi32

SelectObject
GetViewportOrgEx
GetTextMetricsW
GetTextMetricsA
GetObjectA
GetMetaFileBitsEx
GetGlyphOutlineA
SetBkColor
ExtTextOutA
DeleteObject
DeleteDC
CreateFontIndirectW
CreateFontIndirectA
CreateDIBSection
CreateCompatibleDC
CloseFigure
SetBkMode
SetMapMode
SetMapperFlags
SetTextAlign
GetFontLanguageInfo

ole32

CreateStreamOnHGlobal

Exports

Exports

Number_Add
Repr
StrictErrors
_Type
set_invert_alpha
vExecTokenW
vResolveTokenVarA

Sections

.text
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 253KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7904d1abace88d91db80e7d470d59881

Headers

File Characteristics

Imports

dinput

kernel32

advapi32

msvcrt

gdi32

ole32

Exports

Exports

Sections

.text Size: 62KB - Virtual size: 62KB

.rdata Size: 253KB - Virtual size: 252KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 29KB - Virtual size: 29KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 62KB - Virtual size: 62KB

.rdata
Size: 253KB - Virtual size: 252KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 29KB - Virtual size: 29KB

.reloc
Size: 3KB - Virtual size: 2KB