f7616ea1c61d0346b7d641e771872822340ce62677980e3a95c3c034a4d72512

General

Target

f7616ea1c61d0346b7d641e771872822340ce62677980e3a95c3c034a4d72512
Size

248KB
MD5

67410e2ee4bd9ec108d7afec2a7bf870
SHA1

70bfaba22a8d926bf0d9ec55745ba7d23dd8804e
SHA256

f7616ea1c61d0346b7d641e771872822340ce62677980e3a95c3c034a4d72512
SHA512

8beb163e7ac0c43e1574c2203461e10e0cd2a17770ba77e9bb610284171a6d598d67d2efe0821ecab7aab8a9524ede8671c0fdd187e4ba26ae10bae6a7b3d4dd
SSDEEP

6144:bD+lASNSXC97tk/3px/YvVv4U0hY5zA59L:bONBBtk/Zx6VvKO5zA59L

Score

N/A

Malware Config

Signatures

Files

f7616ea1c61d0346b7d641e771872822340ce62677980e3a95c3c034a4d72512
.dll windows x86

9ea36a86f7ba606e2a9fbf0b15a32b91

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetCommandLineA
GetModuleHandleA
GetNumberFormatA
GetVersionExA
GlobalAlloc
GlobalMemoryStatus
GlobalUnlock
HeapAlloc
HeapCreate
IsBadReadPtr
IsValidCodePage
LoadLibraryA
LocalFree
ResumeThread
SetErrorMode
SetLastError
SizeofResource
UnmapViewOfFile
VirtualAlloc
WriteConsoleA
lstrcpyA
lstrcpynA
lstrlenA

advapi32

AbortSystemShutdownA
ConvertSidToStringSidA
LookupAccountNameA
StartTraceA

msvcrt

swscanf
__p__commode
__set_app_type
_cexit
wcscat
time
__getmainargs
sscanf
fwprintf
exit

ole32

CreateObjrefMoniker
IsEqualGUID
CoMarshalInterface

ddraw

GetSurfaceFromDC
GetDDSurfaceLocal
DirectDrawEnumerateW
DirectDrawEnumerateExW
DirectDrawEnumerateA
DirectDrawCreateEx
DirectDrawCreateClipper
DSoundHelp
DDInternalUnlock
DDInternalLock

crypt32

CryptMemAlloc
CryptExportPKCS8
CertCreateCRLContext

Exports

Exports

EnumTvValueRelease

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ea36a86f7ba606e2a9fbf0b15a32b91

Headers

File Characteristics

Imports

kernel32

advapi32

msvcrt

ole32

ddraw

crypt32

Exports

Exports

Sections

.text Size: 136KB - Virtual size: 136KB

.data Size: 96KB - Virtual size: 144KB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 136KB - Virtual size: 136KB

.data
Size: 96KB - Virtual size: 144KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 4KB