73aaeeee258b9db5548554dc9b31b316a088491f23361786f8b17474218a648c

Sharing

Copy URL

Twitter E-mail

General

Target

73aaeeee258b9db5548554dc9b31b316a088491f23361786f8b17474218a648c
Size

339KB
MD5

6984b2c1e9cdeb4a461dd0954a5779fa
SHA1

397cdcbf4f574367a6a618e62176f9f8b5d9e84c
SHA256

73aaeeee258b9db5548554dc9b31b316a088491f23361786f8b17474218a648c
SHA512

4a40675c82168508fc1d7d305027967841f4c184d281780671d455d9a7add30f1f5bc181bebbfff333856a1cdc84bf73b1dcee4297fc37fec6ee21ede04dd5bb
SSDEEP

6144:zdNbGayhqwk01AbykvW7YcMEfU4GgcMc3TZcPLHVk9pSJ9EdiUUOI:zrbGal0qFvW733fbcMcjZcPm9IJ9Ede

Score

N/A

Malware Config

Signatures

Files

73aaeeee258b9db5548554dc9b31b316a088491f23361786f8b17474218a648c
.exe windows x86

6dc3a563f1af8d9e400801300840c178

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dsound

DirectSoundCaptureCreate
DirectSoundCreate
GetDeviceID
DirectSoundFullDuplexCreate
DllCanUnloadNow
DirectSoundCaptureCreate8
DirectSoundCaptureEnumerateW
DirectSoundCreate8
DirectSoundEnumerateW
DllGetClassObject
DirectSoundEnumerateA
DirectSoundCaptureEnumerateA

d3d9

Direct3DShaderValidatorCreate9
PSGPError
D3DPERF_SetOptions
D3DPERF_BeginEvent
DebugSetLevel
D3DPERF_SetRegion
D3DPERF_GetStatus
D3DPERF_QueryRepeatFrame
PSGPSampleTexture
D3DPERF_EndEvent
Direct3DCreate9
D3DPERF_SetMarker
DebugSetMute

serialui

drvCommConfigDialogW
drvSetDefaultCommConfigW
drvGetDefaultCommConfigA
drvCommConfigDialogA
drvSetDefaultCommConfigA
drvGetDefaultCommConfigW

d3d8thk

OsThunkDdResetVisrgn
OsThunkDdDeleteSurfaceObject
OsThunkDdGetScanLine
OsThunkDdGetMoCompGuids
OsThunkDdDestroyMoComp
OsThunkDdUnlock
OsThunkDdGetFlipStatus
OsThunkDdGetDriverInfo
OsThunkDdGetDxHandle
OsThunkDdCreateSurface
OsThunkDdDestroySurface
OsThunkDdQueryDirectDrawObject
OsThunkDdGetMoCompFormats
OsThunkDdCreateDirectDrawObject
OsThunkDdCanCreateSurface
OsThunkDdAlphaBlt

msxbde40

DllRegisterServer
DllUnregisterServer

setupapi

SetupAddToDiskSpaceListA
SetupDiSetDeviceRegistryPropertyA
SetupDiSelectBestCompatDrv
SetupQueueDeleteA
SetupDuplicateDiskSpaceListW
SetupDiCreateDeviceInterfaceW
SetupFreeSourceListW
CM_Get_Child
CM_Next_Range
SetupCloseFileQueue
SetupDiEnumDeviceInfo
SetupDefaultQueueCallbackW
SetupDiOpenClassRegKeyExA
SetupQuerySourceListW
SetupQueueCopySectionW
SetupDiClassGuidsFromNameW
CM_Open_DevNode_Key
SetupCloseLog
CM_Query_Arbitrator_Free_Size
CM_Get_Class_NameW
SetupOpenLog
SetupDiGetHwProfileListExW
SetupDiInstallDeviceInterfaces
CM_Get_Resource_Conflict_DetailsW
SetupDiSetDriverInstallParamsA
CM_Unregister_Device_InterfaceW
SetupDiGetDeviceInstallParamsW
CM_Delete_DevNode_Key_Ex
SetupDiDestroyDriverInfoList
SetupGetTargetPathA
SetupRemoveFromSourceListA
MyRealloc
SetupGetLineCountW
CM_Query_Remove_SubTree_Ex
SetupGetLineTextW
CM_Free_Range_List
SetupPromptForDiskW
CM_Get_Device_IDA
SetupInstallFileW
SetupInitializeFileLogW
SetupInstallServicesFromInfSectionExW
CM_Create_DevNodeW
SetupDiAskForOEMDisk
CM_Get_First_Log_Conf
SetupAddSectionToDiskSpaceListW
SetupGetBackupInformationW
CM_Query_Arbitrator_Free_Size_Ex
SetupDiSetSelectedDriverW

certcli

CAAccessCheck

cryptnet

CertDllVerifyCTLUsage
DllRegisterServer
CryptGetTimeValidObject
CryptInstallCancelRetrieval
CryptGetObjectUrl
CryptUninstallCancelRetrieval
I_CryptNetEnumUrlCacheEntry
CryptRetrieveObjectByUrlW
CryptRetrieveObjectByUrlA
CryptFlushTimeValidObject
I_CryptNetGetHostNameFromUrl
I_CryptNetGetUserDsStoreUrl
CryptCancelAsyncRetrieval
DllUnregisterServer
CertDllVerifyRevocation
LdapProvOpenStore

dbnmpntw

ConnectionMode
ConnectionErrorW
ConnectionOpenW
ConnectionServerEnum
ConnectionOpen
ConnectionVer
ConnectionError
ConnectionCheckForData
ConnectionObjectSize
ConnectionRead
ConnectionStatus
ConnectionClose
ConnectionWrite
ConnectionTransact
ConnectionServerEnumW
ConnectionWriteOOB

mfc42

DllUnregisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

kernel32

GetLastError
UpdateResourceA
RegisterConsoleOS2
FreeEnvironmentStringsA
GlobalCompact
Sleep
VirtualAlloc
GetSystemWindowsDirectoryW
LocalAlloc

Sections

.text
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2.0MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6dc3a563f1af8d9e400801300840c178

Headers

DLL Characteristics

File Characteristics

Imports

dsound

d3d9

serialui

d3d8thk

msxbde40

setupapi

certcli

cryptnet

dbnmpntw

mfc42

kernel32

Sections

.text Size: 133KB - Virtual size: 132KB

.rsrc Size: 204KB - Virtual size: 204KB

.reloc Size: 512B - Virtual size: 32B

.data Size: - Virtual size: 2.0MB

.text
Size: 133KB - Virtual size: 132KB

.rsrc
Size: 204KB - Virtual size: 204KB

.reloc
Size: 512B - Virtual size: 32B

.data
Size: - Virtual size: 2.0MB