49401e8c1c219a3ac301250604e3337bd586d8b66f4654c14e23b4528bd34abb

General

Target

49401e8c1c219a3ac301250604e3337bd586d8b66f4654c14e23b4528bd34abb
Size

389KB
MD5

44e0160947d54a14e5e61ffa06bcacee
SHA1

6d7f92707f3dacdd349809107c241d222eb984bd
SHA256

49401e8c1c219a3ac301250604e3337bd586d8b66f4654c14e23b4528bd34abb
SHA512

b9956694637473bed45a394265852bb76366dc32b8dec86f54a0aebcb4156013d92db4e86c64eeed90af2e9cff877735698f458bb6f8b39af0b79321ff723301
SSDEEP

6144:sfahwrAr5zBE/xeJO6oc70qdiQPjXxJA1LUczxfD7i/zd8qW1V0n5:sftreRO/xz8wQP7xJA1LUufD7WQ1s5

Score

N/A

Malware Config

Signatures

Files

49401e8c1c219a3ac301250604e3337bd586d8b66f4654c14e23b4528bd34abb
.dll windows x86

7895bcc06c86e77bde7d03d47a88f88a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SystemParametersInfoA
ReleaseDC
InvalidateRgn
GetWindowDC
GetDesktopWindow
GetDC
DestroyIcon

gdi32

CreateCompatibleDC
DeleteObject
EnumFontFamiliesExA
ExtTextOutW
GetDIBits
GetDeviceCaps
GetGlyphOutlineA
GetStockObject
GetTextCharset
GetTextMetricsA
SetBitmapBits
SetBkColor
CreateCompatibleBitmap
SetTextColor
SetFontEnumeration

kernel32

DisableThreadLibraryCalls
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetModuleHandleA
GetProcessPriorityBoost
GetSystemDirectoryA
GetSystemTimeAsFileTime
GetTickCount
GetVersion
GetVersionExA
GetWindowsDirectoryA
LoadLibraryA
QueryPerformanceCounter
VirtualAlloc
ExitProcess

advapi32

RegQueryInfoKeyW
RegQueryInfoKeyA
RegOpenKeyExA
RegEnumValueA
RegCloseKey
ElfDeregisterEventSource
AreAllAccessesGranted
AddAccessDeniedAce

Exports

Exports

GetWSAProtocolInfo
LoadMeshHierarchyFromXInMemory
QueryAllTracesA
ReadAttribute
UVAtlasPartition
VecGetFontMapperLinkList
mpegInGetNextFrameTS

Sections

.text
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7895bcc06c86e77bde7d03d47a88f88a

Headers

File Characteristics

Imports

user32

gdi32

kernel32

advapi32

Exports

Exports

Sections

.text Size: 67KB - Virtual size: 66KB

.rdata Size: 191KB - Virtual size: 191KB

.data Size: 68KB - Virtual size: 70KB

.rsrc Size: 57KB - Virtual size: 56KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 67KB - Virtual size: 66KB

.rdata
Size: 191KB - Virtual size: 191KB

.data
Size: 68KB - Virtual size: 70KB

.rsrc
Size: 57KB - Virtual size: 56KB

.reloc
Size: 4KB - Virtual size: 4KB