ce59663f6299e12063c0ee639bc123936daae34bf4047830548e0a684a25035a

Sharing

Copy URL Twitter E-mail

General

Target

ce59663f6299e12063c0ee639bc123936daae34bf4047830548e0a684a25035a
Size

424KB
MD5

5caccb77dc78e7d86d751d807d9f29c3
SHA1

d08680c799c3b4572b4adc8a1223bcc86990552e
SHA256

ce59663f6299e12063c0ee639bc123936daae34bf4047830548e0a684a25035a
SHA512

3662a48bb3c2d89249372d35e0706aaa94f971ade8fa425f9be8e675c15ff6f719967af12320f9436b1d50f4781c1de80c7ad88f38a1a02a127db2f713399618
SSDEEP

6144:p8voOArobj4+zVUcgBHzmUwMChIFcD5JqI0NuDYB/JZsyApYX+Y:MoOAgU7SUwFFDyIsuD6A7

Score

N/A

Malware Config

Signatures

Files

ce59663f6299e12063c0ee639bc123936daae34bf4047830548e0a684a25035a
.dll windows x86

335d4585879b59c4816c78a63834bcdf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetUserDefaultUILanguage
GetVersion
GlobalFree
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByte
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadResource
LockResource
MultiByteToWideChar
OutputDebugStringA
GetSystemTimeAsFileTime
ReleaseMutex
RtlUnwind
SetThreadContext
SetThreadExecutionState
SetupComm
SizeofResource
TerminateProcess
TryEnterCriticalSection
UnhandledExceptionFilter
VirtualAlloc
WaitForMultipleObjects
WaitForSingleObject
GetProcessPriorityBoost
CloseHandle
GetProcessAffinityMask
GetModuleHandleA
GetMailslotInfo
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCurrentConsoleFont
GetCommandLineA
GetCommConfig
FreeLibrary
FlushConsoleInputBuffer
ExitProcess
EnterCriticalSection
DisableThreadLibraryCalls
CreateThread
CreateMutexA
CreateFileA
QueryPerformanceCounter

advapi32

LsaQuerySecurityObject
RegEnumKeyExA
RegQueryValueExA
CloseTrace

dinput

DirectInputCreateA

msvcrt

_j0
_msize
_stricmp
_unlock
_vsnprintf
_wfindfirsti64
floor
free
iswspace
qsort
sqrt
tan
tolower
wcscpy
_initterm
_finite
_atoi64
_amsg_exit
__p__winver
__RTDynamicCast
__CxxLongjmpUnwind
_XcptFilter
_Gettnames
_CxxThrowException
_CIsqrt
_CIcos
_CIatan
_CIacos

gdi32

GetObjectA
GetTextMetricsA
ExtTextOutA
SetBkMode
SetTextAlign
CreateFontIndirectW
ExtTextOutW
DeleteDC
CreateFontIndirectA
CreateDIBSection
CreateCompatibleDC
GetTextMetricsW
CloseFigure

ole32

CreateStreamOnHGlobal

Exports

Exports

InPlaceRshift
WriteLongToFile
_Concat
set_cHRM

Sections

.text
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 243KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

335d4585879b59c4816c78a63834bcdf

Headers

File Characteristics

Imports

kernel32

advapi32

dinput

msvcrt

gdi32

ole32

Exports

Exports

Sections

.text Size: 78KB - Virtual size: 77KB

.rdata Size: 243KB - Virtual size: 243KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 27KB - Virtual size: 27KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 78KB - Virtual size: 77KB

.rdata
Size: 243KB - Virtual size: 243KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 27KB - Virtual size: 27KB

.reloc
Size: 4KB - Virtual size: 4KB