6cfeb66e2f503165cb01d3ca1a3ffec366859a7d4dea440d9f5c95c073ea223f

Sharing

Copy URL Twitter E-mail

General

Target

6cfeb66e2f503165cb01d3ca1a3ffec366859a7d4dea440d9f5c95c073ea223f
Size

406KB
MD5

7db86fcc7a83fc65832d7eabcfbfd0b0
SHA1

ecfd9276864857f74fc8fb05e772c2b875f0d972
SHA256

6cfeb66e2f503165cb01d3ca1a3ffec366859a7d4dea440d9f5c95c073ea223f
SHA512

c083e04c5e9d9300a600c484bc8fe4a04c06f1f3228b51132c71c63ac4e27b3b5754f275d28cb93f34e7b0e8cdf89280611eaacb2e5c1ada3955e2465b7cec1f
SSDEEP

12288:V5+c7KuIrK6HasEfBGiI2cj7Ycs4gfrZjup3YpA:V5+c2uiaRfBk2cjjaVjup3EA

Score

N/A

Malware Config

Signatures

Files

6cfeb66e2f503165cb01d3ca1a3ffec366859a7d4dea440d9f5c95c073ea223f
.dll windows x86

dca032ed76c055d978b5dde7b16b36bf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetVersion
GlobalFix
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsBadHugeWritePtr
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadResource
LockResource
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
GetSystemTimeAsFileTime
ReadFile
ReleaseMutex
RtlUnwind
SetFileApisToOEM
SetSystemTime
SetUnhandledExceptionFilter
SetWaitableTimer
SetupComm
SizeofResource
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteFile
GetProcessPriorityBoost
GetProcessAffinityMask
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
CloseHandle
GetLastError
GetFullPathNameW
GetFileType
GetFileSizeEx
GetFileSize
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCommandLineA
FreeLibrary
FindResourceW
FindResourceA
ExitProcess
EnterCriticalSection
DisableThreadLibraryCalls
DeleteCriticalSection
DebugBreak
CreateThread
CreateMutexA
CreateFileA
CreateConsoleScreenBuffer
QueryPerformanceFrequency

gdi32

TranslateCharsetInfo
SetTextColor
SetBkMode
SetBkColor
SelectObject
MoveToEx
GetWinMetaFileBits
GetTextMetricsW
GetTextMetricsA
GetObjectW
GetObjectA
GetGlyphOutlineA
GetFontLanguageInfo
GetColorAdjustment
GetCharacterPlacementA
ExtTextOutW
ExtTextOutA
DeleteDC
CreateRectRgnIndirect
CreateFontIndirectA
CreateDIBSection
CreateCompatibleDC
DeleteObject

advapi32

SystemFunction001
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey

ole32

CreateStreamOnHGlobal

msvcrt

_purecall
tolower
_CIacos
_CIatan
_CIatan2
_CIcos
_CIsin
_CIsqrt
_CxxThrowException
_XcptFilter
__CxxFrameHandler
__RTDynamicCast
__dllonexit
_amsg_exit
_controlfp
_finite
_fullpath
_initterm
_isnan
_lock
_mbscspn
_mbsrchr
_onexit
_stricmp
_unlock
_vsnprintf
_vsnwprintf
_wcmdln
_wcreat
_wexeclpe
calloc
floor
free
iswalpha
iswdigit
iswpunct
iswspace
malloc
mbtowc
memcpy
memmove
memset
qsort

Exports

Exports

LoadVolumeFromVolume
MatrixDecompose
SHDot
SHEvalSphericalLight
SchemaIsClassAContainer

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 210KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dca032ed76c055d978b5dde7b16b36bf

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

ole32

msvcrt

Exports

Exports

Sections

.text Size: 72KB - Virtual size: 72KB

.rdata Size: 210KB - Virtual size: 210KB

.data Size: 70KB - Virtual size: 70KB

.rsrc Size: 47KB - Virtual size: 46KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 72KB - Virtual size: 72KB

.rdata
Size: 210KB - Virtual size: 210KB

.data
Size: 70KB - Virtual size: 70KB

.rsrc
Size: 47KB - Virtual size: 46KB

.reloc
Size: 5KB - Virtual size: 4KB