a4da140794ed8e5763fb13b3c33d1c0e38eb620311071ceed4fcad7503a0c13a

General

Target

a4da140794ed8e5763fb13b3c33d1c0e38eb620311071ceed4fcad7503a0c13a
Size

362KB
MD5

aed31d72b26c5020cb9890eacb59e63d
SHA1

4e7f3af0bd2b83277b4ecd0230cf726e812de9e5
SHA256

a4da140794ed8e5763fb13b3c33d1c0e38eb620311071ceed4fcad7503a0c13a
SHA512

824730e6439f2d431a2466417f88519f6db5f0cd7fa924220da096f3cd3128ad5e03903ef153fef0c620d92168312147d35b62a30b6df93f5c6e6bf3ae15dd7a
SSDEEP

6144:GEKHhEhVpWswi10gZB4maW1Oxl6+9QHeTO396Cc3xsb9:+E31xZe01Yll9QT+xe

Score

N/A

Malware Config

Signatures

Files

a4da140794ed8e5763fb13b3c33d1c0e38eb620311071ceed4fcad7503a0c13a
.dll windows x86

d3e1eb63b56b4d2a944e5d4667bc7aa4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcscat
wcslen
wcscpy
wcscmp
strrchr
strlen
strcpy
strcmp
strcat
sprintf
memset
memcpy
malloc
longjmp
log10
ispunct
fwrite
ftell
fseek
fopen
floor
fflush
fclose
ceil
_wfopen
_strupr
_stat
_sopen
_ismbcgraph
_errno
_beginthreadex
_adj_fdiv_m16i
__p__timezone
__p__commode
wcsrchr
__dllonexit

winmm

waveInGetID
mmioFlush

kernel32

VirtualAlloc
Sleep
SetThreadPriority
SetThreadAffinityMask
SetEvent
ResetEvent
QueryPerformanceCounter
LoadLibraryA
LeaveCriticalSection
InitializeCriticalSection
GetTickCount
GetThreadPriority
GetSystemTimeAsFileTime
GetSystemInfo
GetProcessPriorityBoost
GetProcessAffinityMask
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLastError
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
FreeLibrary
ExitProcess
EnterCriticalSection
DeleteCriticalSection
CreateEventA
CloseHandle
WaitForSingleObject

Exports

Exports

CreateSPMesh
CreateSkinInfoFromBlendedMesh
DevInstToInstanceNameW

Sections

.text
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d3e1eb63b56b4d2a944e5d4667bc7aa4

Headers

File Characteristics

Imports

msvcrt

winmm

kernel32

Exports

Exports

Sections

.text Size: 61KB - Virtual size: 60KB

.rdata Size: 178KB - Virtual size: 178KB

.data Size: 67KB - Virtual size: 67KB

.rsrc Size: 50KB - Virtual size: 49KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 61KB - Virtual size: 60KB

.rdata
Size: 178KB - Virtual size: 178KB

.data
Size: 67KB - Virtual size: 67KB

.rsrc
Size: 50KB - Virtual size: 49KB

.reloc
Size: 4KB - Virtual size: 3KB