d902f026f9c06fc8897a80d8d227e79f209346e710580293ba76947913b32f72

Sharing

Copy URL Twitter E-mail

General

Target

d902f026f9c06fc8897a80d8d227e79f209346e710580293ba76947913b32f72
Size

1.8MB
MD5

166fb65c8729510db712ca025ac9219b
SHA1

7e98fb5c220c659718f0b011e162c60465f3775e
SHA256

d902f026f9c06fc8897a80d8d227e79f209346e710580293ba76947913b32f72
SHA512

c94140613a98c1b31042f71003ee978e1df88e4412e5d4dbababfdab02f4097a3056640e74ba0f6d08151421479da60d21984957a8999714fbabfd1713b30f3c
SSDEEP

49152:fYY7LEU5aeUEihmffZShCZrs+/8jXJGUtSWgEIE:lcWMEihmffZkkQ+EjXYimE

Score

N/A

Malware Config

Signatures

Files

d902f026f9c06fc8897a80d8d227e79f209346e710580293ba76947913b32f72
.dll windows x86

12fb31d0596af5475d456e509f0af366

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ddraw

DirectDrawCreateEx

gdiplus

GdipReleaseDC

d3d9

Direct3DCreate9

sdl

SDL_DestroyCond

version

GetFileVersionInfoA

winmm

timeGetTime

ffbri

ord38

iconv

libiconv_close

mdesu

ord29

zlib1

uncompress

kernel32

GetVersionExA
GetFileAttributesExA
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

GetWindowRect

gdi32

CreateFontIndirectW

advapi32

RegOpenKeyExW

ole32

CoFreeUnusedLibraries

msvcr90

?_type_info_dtor_internal_method@type_info@@QAEXXZ

wmvcore

WMCreateWriter

msvcp90

??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z

Sections

.text
Size: - Virtual size: 4.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.panda0
Size: - Virtual size: 347KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.panda1
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

12fb31d0596af5475d456e509f0af366

Headers

File Characteristics

Imports

ddraw

gdiplus

d3d9

sdl

version

winmm

ffbri

iconv

mdesu

zlib1

kernel32

user32

gdi32

advapi32

ole32

msvcr90

wmvcore

msvcp90

Sections

.text Size: - Virtual size: 4.8MB

.rdata Size: - Virtual size: 148KB

.data Size: - Virtual size: 64KB

.panda0 Size: - Virtual size: 347KB

.panda1 Size: 1.8MB - Virtual size: 1.8MB

.reloc Size: 512B - Virtual size: 208B

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: - Virtual size: 4.8MB

.rdata
Size: - Virtual size: 148KB

.data
Size: - Virtual size: 64KB

.panda0
Size: - Virtual size: 347KB

.panda1
Size: 1.8MB - Virtual size: 1.8MB

.reloc
Size: 512B - Virtual size: 208B

.rsrc
Size: 1KB - Virtual size: 1KB