ecd618d9d9d23b5198fcb92b2bf57ebf134874bb3daa1ffea1fc64b2186b55a3

Sharing

Copy URL Twitter E-mail

General

Target

ecd618d9d9d23b5198fcb92b2bf57ebf134874bb3daa1ffea1fc64b2186b55a3
Size

726KB
MD5

45238a1eacd21f3a7fe273560c4a6e01
SHA1

f3e79f7319f2919004d139dc925e898b7618ae9a
SHA256

ecd618d9d9d23b5198fcb92b2bf57ebf134874bb3daa1ffea1fc64b2186b55a3
SHA512

58319dbafa722571af2feefaeeceff7ae6dc83d369e2d1975cc17f1217d8fa3c30f9d7206ff2ffe397f1bd76d78ba8cdc0ad79faaabb6549f7fc797c1f480f7c
SSDEEP

12288:XM3FfQG1KKh21F2thWgq8Sylb8Iw5+2Dvz4RlGYPQYc1kDev/vcRT1YeU1/4G:c3FDVC0jXt/blp2D7w4X1kDs/vW1U1/R

Score

7^/10

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/ENB - для средних+/d3d9.dll	acprotect

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ENB - для средних+/d3d9.dll

Files

ecd618d9d9d23b5198fcb92b2bf57ebf134874bb3daa1ffea1fc64b2186b55a3
.zip
ENB - для средних+/d3d9.dll
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

D3DPERF_BeginEvent
D3DPERF_EndEvent
D3DPERF_GetStatus
D3DPERF_QueryRepeatFrame
D3DPERF_SetMarker
D3DPERF_SetOptions
D3DPERF_SetRegion
Detoured
Direct3DCreate9
Direct3DCreate9Ex
_TwAddButton@20
_TwAddSeparator@12
_TwAddVarCB@28
_TwAddVarRO@20
_TwAddVarRW@20
_TwCopyCDStringToClientFunc@4
_TwCopyCDStringToLibrary@8
_TwCopyStdStringToClientFunc@4
_TwCopyStdStringToLibrary@8
_TwDefine@4
_TwDefineEnum@12
_TwDefineEnumFromString@8
_TwDefineStruct@24
_TwDeleteAllBars@0
_TwDeleteBar@4
_TwDraw@0
_TwEventWin32@16
_TwEventWin@16
_TwGetBarByIndex@4
_TwGetBarByName@4
_TwGetBarCount@0
_TwGetBarName@4
_TwGetBottomBar@0
_TwGetCurrentWindow@0
_TwGetLastError@0
_TwGetParam@24
_TwGetTopBar@0
_TwHandleErrors@4
_TwInit@8
_TwKeyPressed@8
_TwKeyTest@8
_TwMouseButton@8
_TwMouseMotion@8
_TwMouseWheel@4
_TwNewBar@4
_TwRefreshBar@4
_TwRemoveAllVars@4
_TwRemoveVar@8
_TwSetBottomBar@4
_TwSetCurrentWindow@4
_TwSetParam@24
_TwSetTopBar@4
_TwTerminate@0
_TwWindowExists@4
_TwWindowSize@8

Sections

CODE
Size: - Virtual size: 6.7MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 712KB - Virtual size: 716KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ENB - для средних+/enbeffect.fx
ENB - для средних+/enblocal.ini
ENB - для средних+/enbseries.ini
ENB - для средних+/Инструкция по установке.txt

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: - Virtual size: 6.7MB

DATA Size: 712KB - Virtual size: 716KB

.rsrc Size: 3KB - Virtual size: 4KB

CODE
Size: - Virtual size: 6.7MB

DATA
Size: 712KB - Virtual size: 716KB

.rsrc
Size: 3KB - Virtual size: 4KB