af91cad979a27fe01242f8ee78199366d3920b00d615f73f9fb3f14ce6176484

Sharing

Copy URL Twitter E-mail

General

Target

af91cad979a27fe01242f8ee78199366d3920b00d615f73f9fb3f14ce6176484
Size

540KB
MD5

6f379a7c6efe9b4088ec0321ee04dcc0
SHA1

1e6ac9bc6bd31626d860caf2b937ac22b5db6c6e
SHA256

af91cad979a27fe01242f8ee78199366d3920b00d615f73f9fb3f14ce6176484
SHA512

5589fdab513dcc633fc00a7f606511864687e9e46ef157b92e60cfeaa22b9dcc2c77fe9686a320cc82abadb8878d70e8170516799654be77e5c22cf70aab2fa3
SSDEEP

6144:4k2l0UYIe1Gmw/i1fDFUQeeaQee7QeesQeeGtQeehQeeF4l58viVzZZIgZv8AOR5:y0UYh4v2kl5ewIgZv87D2PvYMISO9

Score

N/A

Malware Config

Signatures

Files

af91cad979a27fe01242f8ee78199366d3920b00d615f73f9fb3f14ce6176484
.dll windows x86

7dd22752aaa567bd3311873a3b3f7ef7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
WideCharToMultiByte
VirtualFree
VirtualAlloc
OutputDebugStringA
GetSystemInfo
IsProcessorFeaturePresent
WriteFile
GetLastError
CreateFileA
CloseHandle
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
InterlockedIncrement
InterlockedDecrement
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentThreadId
GetCommandLineA
RtlUnwind
GetModuleHandleW
GetVersionExA
LCMapStringA
LCMapStringW
GetCPInfo
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapCreate
HeapDestroy
HeapReAlloc
ReadFile
GetConsoleCP
GetConsoleMode
FlushFileBuffers
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
HeapSize
SetFilePointer
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
InitializeCriticalSectionAndSpinCount
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetLocaleInfoW
VirtualQuery
LoadLibraryA
GetProcAddress
GetCurrentProcess
FlushInstructionCache
SetLastError
CreateThread
VirtualProtect
GetModuleHandleA
Beep
Sleep
IsBadReadPtr
RaiseException
ExitProcess

user32

GetSystemMetrics
DestroyWindow
RegisterClassExA
GetAsyncKeyState
MessageBoxA
CreateWindowExA
DefWindowProcA
GetDesktopWindow

d3d9

Direct3DCreate9

gdi32

SetBkColor
GetCharacterPlacementA
SelectObject
SetBkMode
GetTextMetricsW
GetCharacterPlacementW
SetTextColor
ExtTextOutW
MoveToEx
ExtTextOutA
CreateCompatibleDC
SetMapMode
SetTextAlign
CreateFontIndirectW
CreateFontIndirectA
DeleteObject
DeleteDC
CreateDIBSection
GetGlyphOutlineA
GetTextMetricsA
GetObjectW
GetObjectA
GetFontLanguageInfo

advapi32

RegQueryValueExA
RegOpenKeyA
RegCloseKey

Sections

.text
Size: 229KB - Virtual size: 229KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 121KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7dd22752aaa567bd3311873a3b3f7ef7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

d3d9

gdi32

advapi32

Sections

.text Size: 229KB - Virtual size: 229KB

.rdata Size: 112KB - Virtual size: 112KB

.data Size: 46KB - Virtual size: 65KB

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 29KB - Virtual size: 28KB

.text Size: 121KB - Virtual size: 124KB

.text
Size: 229KB - Virtual size: 229KB

.rdata
Size: 112KB - Virtual size: 112KB

.data
Size: 46KB - Virtual size: 65KB

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 29KB - Virtual size: 28KB

.text
Size: 121KB - Virtual size: 124KB