c88cb02a5bb22e1a021c70dc84bec8c14cb4411e8ce0c4de8a79ec4d2290083f

General

Target

c88cb02a5bb22e1a021c70dc84bec8c14cb4411e8ce0c4de8a79ec4d2290083f
Size

406KB
MD5

a2109386c66c1bd3cbcc16514e0e9b90
SHA1

8f50805afa33693eca8a1b1c9ded7c060d869501
SHA256

c88cb02a5bb22e1a021c70dc84bec8c14cb4411e8ce0c4de8a79ec4d2290083f
SHA512

2c9a21f7f7aa51442c2e6ace43e45cda629fb03d6bc1863ef86770f699f8cac99ada88e417c0e170edce0df6e458c5ae2531a3db74efe051a4898fbf13c0c318
SSDEEP

12288:nWjS+bJPgit0CvTtN1sx4W+wwo1/5A7P:n4S+bJP5xbtN26o1/54

Score

N/A

Malware Config

Signatures

Files

c88cb02a5bb22e1a021c70dc84bec8c14cb4411e8ce0c4de8a79ec4d2290083f
.dll windows x86

ff53778ad5911629958333d3f5ddc062

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
LsaLookupPrivilegeValue

ole32

CoTaskMemFree
StringFromCLSID

kernel32

lstrlenW
WideCharToMultiByte
WaitForSingleObject
CancelDeviceWakeupRequest
CreateFileA
CreateProcessA
DeleteCriticalSection
ExitProcess
GetACP
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentVariableA
GetLastError
GetLocaleInfoA
GetLongPathNameA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetShortPathNameA
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
LoadLibraryA
QueryPerformanceCounter
RtlMoveMemory
SetFileTime
VirtualAlloc
VirtualLock
VirtualProtect
VirtualUnlock

Exports

Exports

Bufferi
CheckURLScheme
CreateCubeTexture
GatherFragmentsFromFileA
GetSockaddrType
PlaneTransformArray
QueryAllDataW
SourceUnqueueBuffers
TypeToLdapTypeCopyTime

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff53778ad5911629958333d3f5ddc062

Headers

File Characteristics

Imports

advapi32

ole32

kernel32

Exports

Exports

Sections

.text Size: 72KB - Virtual size: 71KB

.rdata Size: 196KB - Virtual size: 196KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 72KB - Virtual size: 71KB

.rdata
Size: 196KB - Virtual size: 196KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 3KB - Virtual size: 3KB