b3eed974781096222e57b32ee78e8f7abad82d541f33261683334d85c86cd1ac

Sharing

Copy URL Twitter E-mail

General

Target

b3eed974781096222e57b32ee78e8f7abad82d541f33261683334d85c86cd1ac
Size

371KB
MD5

6df888ed5fcf9c9608ff0b2a1784bb02
SHA1

f30735ec95698868a651313ac74d4540305532d3
SHA256

b3eed974781096222e57b32ee78e8f7abad82d541f33261683334d85c86cd1ac
SHA512

bfed93b467a8ce035ecffde1b0e700f01572d8f212030baf31a6d3ee2d89e1817903f6d3b3f51ef75b1921317c5fb21e291bd3934249009fbc4c30090bbdba32
SSDEEP

6144:5F9jN6DkNek7sC6bLLSjBIUjvGf0w16fLt+GKetABQBL78TZgXsen6LJGCsA:5/kwNewWLuBIUrGf7756ow68Cb

Score

N/A

Malware Config

Signatures

Files

b3eed974781096222e57b32ee78e8f7abad82d541f33261683334d85c86cd1ac
.dll windows x86

c703c1692fa4b8c04fd675d6d7bf4e38

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

user32

wsprintfW
TranslateMessage
SetWindowTextA
PeekMessageA
GetWindowThreadProcessId
GetClassNameA
EnumWindows
EnumChildWindows
DispatchMessageA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

dbghelp

ImageNtHeader
SymEnumSourceFiles
SymEnumSymbols
SymFindFileInPath
SymGetTypeInfo
SymInitialize
SymCleanup

msvcrt

system
strtoul
strrchr
strncmp
strchr
sqrt
sprintf
realloc
rand
printf
memset
mbtowc
malloc
localeconv
isxdigit
iswprint
isupper
isspace
isdigit
isalpha
gmtime
fputws
fprintf
ferror
fclose
calloc
atoi
_wspawnle
_wrmdir
wcstoul
_wcsicmp
_tzset
_strupr
_strtime
_strrev
_strnicmp
_strlwr
_stricmp
_snprintf
_read
_purecall
_onexit
_lseeki64
_lock
_itoa
_ismbclegal
_ismbblead
_isatty
_iob
_initterm
_flsbuf
_fileno
_expand
_execlp
_atoi64
_amsg_exit
__pioinfo
__p__pctype
__mb_cur_max
__dllonexit
__badioinfo
wcsstr
wcsrchr
wcsncpy
wcsncmp
wcschr
tmpnam
_write
time
strtol

kernel32

DebugBreak
EnterCriticalSection
ExitProcess
FileTimeToLocalFileTime
CreateFileMappingA
FindClose
FindFirstFileA
FindResourceA
FormatMessageA
FreeLibrary
CreateDirectoryA
CompareFileTime
FileTimeToSystemTime
lstrlenW
lstrlenA
lstrcmpA
WriteFile
WinExec
WideCharToMultiByte
VirtualFreeEx
VirtualAllocEx
VirtualAlloc
UnmapViewOfFile
UnhandledExceptionFilter
TlsAlloc
TerminateProcess
SystemTimeToFileTime
SetUnhandledExceptionFilter
SetLastError
SetFilePointer
SetCommMask
SearchPathA
RtlUnwind
ReadFile
QueryPerformanceCounter
MultiByteToWideChar
MapViewOfFile
LockResource
LocalFree
LoadResource
LoadLibraryA
IsBadStringPtrA
IsBadReadPtr
InterlockedExchange
InterlockedCompareExchange
HeapFree
HeapAlloc
GetVersionExW
GetVersionExA
GetVersion
GetTickCount
GetSystemTimeAsFileTime
GetSystemTime
GetProcessWorkingSetSize
GetProcessPriorityBoost
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocalTime
GetLastError
GetFileSize
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCommandLineA
GetCommConfig
GetCPInfo
CloseHandle

advapi32

RegOpenKeyExA
RegOpenKeyExW
RegCloseKey

Exports

Exports

CacheAddRef
CreateTextureFromFileInMemory
GetAdapterNameW
GetShaderSamplers
GetWMFResolutionEx
InsertMarker

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c703c1692fa4b8c04fd675d6d7bf4e38

Headers

File Characteristics

Imports

version

user32

ole32

dbghelp

msvcrt

kernel32

advapi32

Exports

Exports

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 166KB - Virtual size: 166KB

.data Size: 68KB - Virtual size: 70KB

.rsrc Size: 64KB - Virtual size: 64KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 166KB - Virtual size: 166KB

.data
Size: 68KB - Virtual size: 70KB

.rsrc
Size: 64KB - Virtual size: 64KB

.reloc
Size: 3KB - Virtual size: 3KB