b105ee50de4d4e760aff1c574e0dda190bc3d909e0919e9efe1566748bb332d0

General

Target

b105ee50de4d4e760aff1c574e0dda190bc3d909e0919e9efe1566748bb332d0
Size

406KB
MD5

6109f9fd0405d2bfc13a73f43fdc7d4a
SHA1

6d36e977d1c34433b6eb55dc8632f64bdfbd35bd
SHA256

b105ee50de4d4e760aff1c574e0dda190bc3d909e0919e9efe1566748bb332d0
SHA512

faf34315a850e72855da5775f98de04c07b75bc12b9b25f8ee180f0b1b384d4b67a84bc6f8af07122e543b09091db95e1a4560f5d683600e28ecbb905e9b39e5
SSDEEP

6144:81lU8wyW3gnXTtEI7jJXgdEx9AE5b0K9siVln2iWGQb/gsZTaMbp9YevSkfwkLC:8GnyW36BEI3J90efVln2VbIsxMevZBC

Score

N/A

Malware Config

Signatures

Files

b105ee50de4d4e760aff1c574e0dda190bc3d909e0919e9efe1566748bb332d0
.dll windows x86

b57d13133806303ddbf23debff061b47

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA
ImpersonateAnonymousToken

ole32

CoTaskMemFree
StringFromCLSID

kernel32

lstrlenW
WideCharToMultiByte
WaitForSingleObject
CloseHandle
CreateFileA
CreateProcessA
DeleteCriticalSection
DosDateTimeToFileTime
EnterCriticalSection
ExitProcess
FreeLibrary
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentVariableA
GetLastError
GetLocaleInfoA
GetLongPathNameA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetShortPathNameA
GetStartupInfoA
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetVersionExA
GlobalUnWire
HeapReAlloc
InitializeCriticalSection
InterlockedExchange
LoadLibraryA
QueryInformationJobObject
QueryPerformanceCounter
QueryPerformanceFrequency
VirtualAlloc

Exports

Exports

Bufferiv
ConcatenateMeshes
EnumerateGuids
GetBufferf
GetFirstRow
MatrixAffineTransformation
SaveFileMemory
Vec2Hermite

Sections

.text
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b57d13133806303ddbf23debff061b47

Headers

File Characteristics

Imports

advapi32

ole32

kernel32

Exports

Exports

Sections

.text Size: 82KB - Virtual size: 81KB

.rdata Size: 178KB - Virtual size: 178KB

.data Size: 70KB - Virtual size: 71KB

.rsrc Size: 69KB - Virtual size: 69KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 82KB - Virtual size: 81KB

.rdata
Size: 178KB - Virtual size: 178KB

.data
Size: 70KB - Virtual size: 71KB

.rsrc
Size: 69KB - Virtual size: 69KB

.reloc
Size: 5KB - Virtual size: 4KB