203b3c61ef0017f1a4c157954c0ebd02d90c7b00e33eed8261b31163838f24ac

General

Target

203b3c61ef0017f1a4c157954c0ebd02d90c7b00e33eed8261b31163838f24ac
Size

320KB
MD5

0877cc0a877581f16ec5662d5d4b10cb
SHA1

5246eb7e26bbcc80bf92f21716920577092ea745
SHA256

203b3c61ef0017f1a4c157954c0ebd02d90c7b00e33eed8261b31163838f24ac
SHA512

d9e544eea47f82a28e7cdcf6e99fe16ab3e2f5b134d4319c40e18c2dba1fc0c7bcb610c651668e759fb30486fa50f71b620e2904290a82e79fa32c45dbbe1e68
SSDEEP

3072:WsAsrfhqP3dJwV7tts2ltThBJf5bIWC80KY5S0aODj7Hsl9Q:U2fw/d63ts2NxVpU4o7k

Score

N/A

Malware Config

Signatures

Files

203b3c61ef0017f1a4c157954c0ebd02d90c7b00e33eed8261b31163838f24ac
.dll windows x86

c62121ede1c8990982361e9fff6c12ba

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedCompareExchange
LoadLibraryA
GetProcAddress
DebugBreak
CreateDirectoryA
GetCurrentDirectoryA
InterlockedIncrement
InterlockedDecrement
InterlockedExchangeAdd
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
TryEnterCriticalSection
LeaveCriticalSection
Sleep
SetFileAttributesA
WaitForSingleObject
RaiseException
QueryPerformanceCounter
InterlockedExchange
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
GetFileAttributesA
GetModuleHandleA

user32

ToUnicode
CallWindowProcA
GetRawInputData
GetAsyncKeyState
MessageBoxA
GetKeyState
MapVirtualKeyExA
ToUnicodeEx
GetKeyboardLayout
ToAsciiEx

dinput8

DirectInput8Create

Exports

Exports

CreateInput
CryModuleGetMemoryInfo

Sections

.text
Size: 268KB - Virtual size: 269KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c62121ede1c8990982361e9fff6c12ba

Headers

File Characteristics

Imports

kernel32

user32

dinput8

Exports

Exports

Sections

.text Size: 268KB - Virtual size: 269KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 4KB - Virtual size: 55KB

.tls Size: 4KB - Virtual size: 4B

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 12KB - Virtual size: 12KB

.text
Size: 268KB - Virtual size: 269KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 4KB - Virtual size: 55KB

.tls
Size: 4KB - Virtual size: 4B

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 12KB - Virtual size: 12KB