General

Malware Config

Signatures

Files

• 8f02db051024b4431c0bd5beb7d666a9f717e3a6386f24a11857ca5b92ce617c

  .dll windows:6 windows x86

  5cfe1e116ec692e740c7d0c2a8ff06e7

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DLL

  Imports

  kernel32

  CreateFileMappingW

  MapViewOfFile

  GetProcAddress

  GetModuleHandleW

  GetCurrentProcess

  GetModuleHandleA

  K32GetModuleInformation

  CloseHandle

  FreeLibrary

  GetTickCount

  Sleep

  QueueUserAPC

  GetCurrentThread

  SetUnhandledExceptionFilter

  TerminateProcess

  UnhandledExceptionFilter

  IsProcessorFeaturePresent

  QueryPerformanceCounter

  GetCurrentProcessId

  IsDebuggerPresent

  InitializeSListHead

  GetSystemTimeAsFileTime

  GetCurrentThreadId

  vcruntime140

  memset

  __std_type_info_destroy_list

  _except_handler4_common

  memcpy

  api-ms-win-crt-utility-l1-1-0

  rand

  api-ms-win-crt-runtime-l1-1-0

  _cexit

  _initterm

  _execute_onexit_table

  _initialize_onexit_table

  _initialize_narrow_environment

  _configure_narrow_argv

  _initterm_e

  _seh_filter_dll

  Exports

  Exports

  NvidiaEnable

  Sections

  .text

  Size: 4KB - Virtual size: 4KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 3KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 206KB - Virtual size: 206KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 512B - Virtual size: 480B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 420B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ