248857147e0ad1b92527a485d2c8b334

Sharing

Copy URL Twitter E-mail

General

Target

248857147e0ad1b92527a485d2c8b334
Size

1.8MB
MD5

248857147e0ad1b92527a485d2c8b334
SHA1

47d8e807879031de035ccd294e1bcd3fc3db057f
SHA256

a1da53eee5891d891a8a2164fc7715dacfd7ab34c22160d3b97247e706ab96ea
SHA512

082b525af885b48c0836de04eca6c6eb52595bf2d5ab52501e4c45280dcb3bd023823e849fae48ea0b5d043b2b55afc98833ce17de23e493d57614e305e00d3f
SSDEEP

49152:RUDosVRaYk8yfPBI1nVq5uRgt7xxAHLrZ8xlJguxhf2:/XvtQebxAYd2

Score

5^/10

pdf

Malware Config

Signatures

Malformed data in PDF
A PDF can contain malformed data to evade detection
pdf

Unsigned PE 12 IoCs

Checks for missing Authenticode signature.

resource
unpack003/SOURCE/01_DLL/!BinRes/binres_test.exe
unpack003/SOURCE/01_DLL/SampleDLL.dll
unpack003/SOURCE/01_DLL/SampleDYNAMIC.exe
unpack003/SOURCE/01_DLL/SampleSTATIC.exe
unpack005/SOURCE/01_DLL/!BinRes/binres_test.exe
unpack005/SOURCE/01_DLL/SampleDLL.dll
unpack005/SOURCE/01_DLL/SampleDYNAMIC.exe
unpack005/SOURCE/01_DLL/SampleSTATIC.exe
unpack008/SOURCE/01_DLL/!BinRes/binres_test.exe
unpack008/SOURCE/01_DLL/SampleDLL.dll
unpack008/SOURCE/01_DLL/SampleDYNAMIC.exe
unpack008/SOURCE/01_DLL/SampleSTATIC.exe

Files

248857147e0ad1b92527a485d2c8b334
.rar
dll_tutorial/dll_tutorial.pdf
.pdf
dll_tutorial/dll_tutorial.rar
.rar
SOURCE/01_DLL/!BinRes/SOURCE/Resources/binres.rc
SOURCE/01_DLL/!BinRes/SOURCE/Resources/test.bat
SOURCE/01_DLL/!BinRes/SOURCE/binres.res
SOURCE/01_DLL/!BinRes/SOURCE/binres_test.dpr
SOURCE/01_DLL/!BinRes/SOURCE/build.bat
SOURCE/01_DLL/!BinRes/SOURCE/resbuild.bat
SOURCE/01_DLL/!BinRes/binres_test.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/!BinRes/license.txt
SOURCE/01_DLL/!VCL/AppFormUnit1.dfm
SOURCE/01_DLL/!VCL/AppFormUnit1.pas
.js
SOURCE/01_DLL/!VCL/FormUnit1.dfm
SOURCE/01_DLL/!VCL/FormUnit1.pas
SOURCE/01_DLL/!VCL/VCL_SampleDLL.dpr
SOURCE/01_DLL/!VCL/VCL_SampleDLL_01.dpr
SOURCE/01_DLL/!VCL/VCL_call1.dpr
SOURCE/01_DLL/!VCL/VCL_call2.dpr
SOURCE/01_DLL/Include/Common.pas
SOURCE/01_DLL/Include/Compilerswitches.pas
SOURCE/01_DLL/Include/Constants.pas
SOURCE/01_DLL/Include/DYNAMIC.pas
.js
SOURCE/01_DLL/Include/FormatString.pas
SOURCE/01_DLL/Include/GetFont.pas
SOURCE/01_DLL/Include/STATIC.pas
SOURCE/01_DLL/Resources/assarbad.ico
SOURCE/01_DLL/Resources/resource.h
SOURCE/01_DLL/Resources/script1.rc
SOURCE/01_DLL/Sample.dpr
SOURCE/01_DLL/SampleDLL.dll
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

OneFunction
OneFunction_CDECL
OneFunction_STDCALL
initDLL

Sections

CODE
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 543B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/SampleDLL.dpr
SOURCE/01_DLL/SampleDYNAMIC.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/SampleSTATIC.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/build.bat
SOURCE/01_DLL/main.res
SOURCE/01_DLL/resbuild.bat
SOURCE/0C_Unions/Unions.dpr
SOURCE/0C_Unions/Unions.res
SOURCE/0C_Unions/Unit1.dfm
SOURCE/0C_Unions/Unit1.pas
SOURCE/WindowsTypes.inc
dll_tutorial.pdf
.pdf
history.txt
license.txt
liesmich.txt
dll_tutorial/dll_tutorial.zip
.zip
SOURCE/01_DLL/!BinRes/SOURCE/Resources/binres.rc
SOURCE/01_DLL/!BinRes/SOURCE/Resources/test.bat
SOURCE/01_DLL/!BinRes/SOURCE/binres.res
SOURCE/01_DLL/!BinRes/SOURCE/binres_test.dpr
SOURCE/01_DLL/!BinRes/SOURCE/build.bat
SOURCE/01_DLL/!BinRes/SOURCE/resbuild.bat
SOURCE/01_DLL/!BinRes/binres_test.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/!BinRes/license.txt
SOURCE/01_DLL/!VCL/AppFormUnit1.dfm
SOURCE/01_DLL/!VCL/AppFormUnit1.pas
.js
SOURCE/01_DLL/!VCL/FormUnit1.dfm
SOURCE/01_DLL/!VCL/FormUnit1.pas
SOURCE/01_DLL/!VCL/VCL_SampleDLL.dpr
SOURCE/01_DLL/!VCL/VCL_SampleDLL_01.dpr
SOURCE/01_DLL/!VCL/VCL_call1.dpr
SOURCE/01_DLL/!VCL/VCL_call2.dpr
SOURCE/01_DLL/Include/Common.pas
SOURCE/01_DLL/Include/Compilerswitches.pas
SOURCE/01_DLL/Include/Constants.pas
SOURCE/01_DLL/Include/DYNAMIC.pas
.js
SOURCE/01_DLL/Include/FormatString.pas
SOURCE/01_DLL/Include/GetFont.pas
SOURCE/01_DLL/Include/STATIC.pas
SOURCE/01_DLL/Resources/assarbad.ico
SOURCE/01_DLL/Resources/resource.h
SOURCE/01_DLL/Resources/script1.rc
SOURCE/01_DLL/Sample.dpr
SOURCE/01_DLL/SampleDLL.dll
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

OneFunction
OneFunction_CDECL
OneFunction_STDCALL
initDLL

Sections

CODE
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 543B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/SampleDLL.dpr
SOURCE/01_DLL/SampleDYNAMIC.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/SampleSTATIC.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/build.bat
SOURCE/01_DLL/main.res
SOURCE/01_DLL/resbuild.bat
SOURCE/0C_Unions/Unions.dpr
SOURCE/0C_Unions/Unions.res
SOURCE/0C_Unions/Unit1.dfm
SOURCE/0C_Unions/Unit1.pas
SOURCE/WindowsTypes.inc
dll_tutorial.pdf
.pdf
history.txt
license.txt
liesmich.txt
dll_tutorial/dll_tutorial_2on1.pdf
.pdf
dll_tutorial/dll_tutorial_2on1.rar
.rar
SOURCE/01_DLL/!BinRes/SOURCE/Resources/binres.rc
SOURCE/01_DLL/!BinRes/SOURCE/Resources/test.bat
SOURCE/01_DLL/!BinRes/SOURCE/binres.res
SOURCE/01_DLL/!BinRes/SOURCE/binres_test.dpr
SOURCE/01_DLL/!BinRes/SOURCE/build.bat
SOURCE/01_DLL/!BinRes/SOURCE/resbuild.bat
SOURCE/01_DLL/!BinRes/binres_test.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/!BinRes/license.txt
SOURCE/01_DLL/!VCL/AppFormUnit1.dfm
SOURCE/01_DLL/!VCL/AppFormUnit1.pas
.js
SOURCE/01_DLL/!VCL/FormUnit1.dfm
SOURCE/01_DLL/!VCL/FormUnit1.pas
SOURCE/01_DLL/!VCL/VCL_SampleDLL.dpr
SOURCE/01_DLL/!VCL/VCL_SampleDLL_01.dpr
SOURCE/01_DLL/!VCL/VCL_call1.dpr
SOURCE/01_DLL/!VCL/VCL_call2.dpr
SOURCE/01_DLL/Include/Common.pas
SOURCE/01_DLL/Include/Compilerswitches.pas
SOURCE/01_DLL/Include/Constants.pas
SOURCE/01_DLL/Include/DYNAMIC.pas
.js
SOURCE/01_DLL/Include/FormatString.pas
SOURCE/01_DLL/Include/GetFont.pas
SOURCE/01_DLL/Include/STATIC.pas
SOURCE/01_DLL/Resources/assarbad.ico
SOURCE/01_DLL/Resources/resource.h
SOURCE/01_DLL/Resources/script1.rc
SOURCE/01_DLL/Sample.dpr
SOURCE/01_DLL/SampleDLL.dll
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

OneFunction
OneFunction_CDECL
OneFunction_STDCALL
initDLL

Sections

CODE
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 543B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/SampleDLL.dpr
SOURCE/01_DLL/SampleDYNAMIC.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/SampleSTATIC.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SOURCE/01_DLL/build.bat
SOURCE/01_DLL/main.res
SOURCE/01_DLL/resbuild.bat
SOURCE/0C_Unions/Unions.dpr
SOURCE/0C_Unions/Unions.res
SOURCE/0C_Unions/Unit1.dfm
SOURCE/0C_Unions/Unit1.pas
SOURCE/WindowsTypes.inc
dll_tutorial_2on1.pdf
.pdf
history.txt
license.txt
liesmich.txt
dll_tutorial/dll_tutorial_2on1.zip
.zip
dll_tutorial/dll_tutorial_sxw.rar
.rar
hooks/hook_tutorial.pdf
.pdf
hooks/hook_tutorial.rar
.rar
isapi/htmls/questionnaire1.html
.html
isapi/htmls/test.html
.html
isapi/htmls/thanks.html
.html
isapi/index.html
.html
isapi/isapi_sample.zip
.zip
isapi/license.txt
isapi/stylesheet/hp.css
nonvcl/hlinktest.zip
.zip
nonvcl/index.html
.html
nonvcl/license.txt
nonvcl/reseditor.png
.png
nonvcl/stylesheet/hp.css
nonvcl/test1.zip
.zip
nonvcl/test2.zip
.zip
ntsvc/cmd_svc.zip
.zip
ntsvc/index.html
.html
ntsvc/license.txt
ntsvc/sample_svc.zip
.zip
ntsvc/stylesheet/hp.css

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 11KB - Virtual size: 10KB

DATA Size: 512B - Virtual size: 180B

BSS Size: - Virtual size: 1KB

.idata Size: 1KB - Virtual size: 1KB

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 1024B - Virtual size: 832B

.rsrc Size: 1KB - Virtual size: 1KB

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 12KB - Virtual size: 11KB

DATA Size: 512B - Virtual size: 196B

BSS Size: - Virtual size: 1KB

.idata Size: 1KB - Virtual size: 1KB

.edata Size: 1024B - Virtual size: 543B

.reloc Size: 1024B - Virtual size: 872B

.rsrc Size: 512B - Virtual size: 512B

Headers

File Characteristics

Sections

CODE Size: 13KB - Virtual size: 13KB

DATA Size: 512B - Virtual size: 220B

BSS Size: - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 1KB

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 1024B - Virtual size: 1024B

.rsrc Size: 3KB - Virtual size: 3KB

Headers

File Characteristics

Sections

CODE Size: 13KB - Virtual size: 12KB

DATA Size: 512B - Virtual size: 180B

BSS Size: - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 1KB

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 1024B - Virtual size: 924B

.rsrc Size: 3KB - Virtual size: 3KB

Headers

File Characteristics

Sections

CODE Size: 11KB - Virtual size: 10KB

DATA Size: 512B - Virtual size: 180B

BSS Size: - Virtual size: 1KB

.idata Size: 1KB - Virtual size: 1KB

.tls Size: - Virtual size: 8B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 1024B - Virtual size: 832B

.rsrc Size: 1KB - Virtual size: 1KB

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 12KB - Virtual size: 11KB

DATA Size: 512B - Virtual size: 196B

BSS Size: - Virtual size: 1KB

.idata Size: 1KB - Virtual size: 1KB

.edata Size: 1024B - Virtual size: 543B

.reloc Size: 1024B - Virtual size: 872B

.rsrc Size: 512B - Virtual size: 512B

Headers

File Characteristics

Sections

CODE Size: 13KB - Virtual size: 13KB

DATA Size: 512B - Virtual size: 220B

BSS Size: - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 1KB

CODE
Size: 11KB - Virtual size: 10KB

DATA
Size: 512B - Virtual size: 180B

BSS
Size: - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 1024B - Virtual size: 832B

.rsrc
Size: 1KB - Virtual size: 1KB

CODE
Size: 12KB - Virtual size: 11KB

DATA
Size: 512B - Virtual size: 196B

BSS
Size: - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.edata
Size: 1024B - Virtual size: 543B

.reloc
Size: 1024B - Virtual size: 872B

.rsrc
Size: 512B - Virtual size: 512B

CODE
Size: 13KB - Virtual size: 13KB

DATA
Size: 512B - Virtual size: 220B

BSS
Size: - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 1KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 1024B - Virtual size: 1024B

.rsrc
Size: 3KB - Virtual size: 3KB

CODE
Size: 13KB - Virtual size: 12KB

DATA
Size: 512B - Virtual size: 180B

BSS
Size: - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 1KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 1024B - Virtual size: 924B

.rsrc
Size: 3KB - Virtual size: 3KB

CODE
Size: 11KB - Virtual size: 10KB

DATA
Size: 512B - Virtual size: 180B

BSS
Size: - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 1024B - Virtual size: 832B

.rsrc
Size: 1KB - Virtual size: 1KB

CODE
Size: 12KB - Virtual size: 11KB

DATA
Size: 512B - Virtual size: 196B

BSS
Size: - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.edata
Size: 1024B - Virtual size: 543B

.reloc
Size: 1024B - Virtual size: 872B

.rsrc
Size: 512B - Virtual size: 512B

CODE
Size: 13KB - Virtual size: 13KB

DATA
Size: 512B - Virtual size: 220B

BSS
Size: - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 1KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 1024B - Virtual size: 1024B

.rsrc
Size: 3KB - Virtual size: 3KB

CODE
Size: 13KB - Virtual size: 12KB

DATA
Size: 512B - Virtual size: 180B

BSS
Size: - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 1KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 1024B - Virtual size: 924B

.rsrc
Size: 3KB - Virtual size: 3KB

CODE
Size: 11KB - Virtual size: 10KB

DATA
Size: 512B - Virtual size: 180B

BSS
Size: - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.tls
Size: - Virtual size: 8B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 1024B - Virtual size: 832B

.rsrc
Size: 1KB - Virtual size: 1KB

CODE
Size: 12KB - Virtual size: 11KB

DATA
Size: 512B - Virtual size: 196B

BSS
Size: - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.edata
Size: 1024B - Virtual size: 543B

.reloc
Size: 1024B - Virtual size: 872B

.rsrc
Size: 512B - Virtual size: 512B

CODE
Size: 13KB - Virtual size: 13KB

DATA
Size: 512B - Virtual size: 220B

BSS
Size: - Virtual size: 1KB