55f3e3bf2fe8d87276b0a939be6d0e64

Sharing

Copy URL Twitter E-mail

General

Target

55f3e3bf2fe8d87276b0a939be6d0e64
Size

1.3MB
MD5

55f3e3bf2fe8d87276b0a939be6d0e64
SHA1

b206ee743f9ff07ad44b07b2a91cfe6dde307ac2
SHA256

ccf4e1808f6967cfd4435cd88f116a2c210be5e91ca228959208fdfc6ac4a2c6
SHA512

10e216b9381b6e2240fbc5ea1f936673ddcf295e46b90b011c323cd8dcfc3988fbb3f5a688a199b893a715929e917e6b82b9909a9903628294982deb40823516
SSDEEP

12288:2ApD7zzfR6QB+xQm2tEf+frB1BsZTAVypmuM/BO1hnFPCiqOqnuW2VPC4kqPiW6:DD7zzfR6QB+x1+f0eypQ5O1hH+ud5k1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55f3e3bf2fe8d87276b0a939be6d0e64

Files

55f3e3bf2fe8d87276b0a939be6d0e64
.dll windows:6 windows x86 arch:x86

bbd482ec576605c1b0504c0e869dee9b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

d3dx9_43

D3DXCreateTextureFromFileA
D3DXAssembleShader
D3DXCreateSprite
D3DXMatrixTransformation2D
D3DXMatrixInverse
D3DXQuaternionMultiply
D3DXQuaternionRotationAxis

kernel32

GetSystemTimeAsFileTime
GetLastError
GlobalAlloc
GlobalUnlock
GlobalLock
DecodePointer
RaiseException
SetUnhandledExceptionFilter
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
InitializeCriticalSectionAndSpinCount
GetSystemDirectoryA
DisableThreadLibraryCalls
FreeLibrary
GetModuleFileNameA
GetSystemInfo
Sleep
GetOEMCP
GetACP
IsValidCodePage
FlushFileBuffers
ReadConsoleW
GetConsoleMode
GetConsoleOutputCP
WriteFile
SetFilePointerEx
GetFileSizeEx
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
GetProcAddress
GetModuleHandleA
VirtualQuery
FlushInstructionCache
GetCurrentProcess
OutputDebugStringA
MultiByteToWideChar
VirtualProtect
GetLocalTime
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
GetFileType
GetStdHandle
CloseHandle
QueryPerformanceFrequency
QueryPerformanceCounter
GetTickCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
WriteConsoleW
SetStdHandle
CreateFileW
SetEndOfFile
GetCommandLineA
GetModuleFileNameW
ExitProcess
ReadFile
GetModuleHandleExW
FindNextFileW
FindFirstFileExW
FindClose
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetLastError
InterlockedFlushSList
InitializeCriticalSectionEx
EncodePointer
WideCharToMultiByte
LCMapStringEx
GetStringTypeW
GetCPInfo
IsDebuggerPresent
OutputDebugStringW
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
UnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
TerminateProcess
RtlUnwind

user32

mouse_event
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
ScreenToClient
CallWindowProcA
MapVirtualKeyA
GetKeyState
SetWindowLongA
FillRect
MoveWindow
GetSystemMetrics
SetWindowPos
GetClientRect
GetCursorPos
keybd_event
GetForegroundWindow
GetAsyncKeyState

gdi32

ExtTextOutA
CreateDIBSection
SetTextAlign
SetTextColor
SetMapMode
SetBkMode
SelectObject
GetTextExtentPoint32A
GetDeviceCaps
DeleteObject
DeleteDC
CreateSolidBrush
CreateFontA
CreateCompatibleDC

shell32

ShellExecuteA

anttweakbar

_TwInit@8
_TwTerminate@0
_TwWindowSize@8
_TwDraw@0
_TwNewBar@4
_TwEventWin@16
_TwSetParam@24
_TwGetParam@24
_TwDefineEnum@12
_TwDefine@4
_TwAddSeparator@12
_TwAddButton@20
_TwAddVarCB@28
_TwAddVarRW@20

ws2_32

WSAStartup
WSACleanup

Exports

Exports

Direct3DCreate9

Sections

.text
Size: 595KB - Virtual size: 594KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 214KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 349KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.d3d9_sh
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bbd482ec576605c1b0504c0e869dee9b

Headers

DLL Characteristics

File Characteristics

Imports

d3dx9_43

kernel32

user32

gdi32

shell32

anttweakbar

ws2_32

Exports

Exports

Sections

.text Size: 595KB - Virtual size: 594KB

.rdata Size: 214KB - Virtual size: 214KB

.data Size: 349KB - Virtual size: 1.4MB

.d3d9_sh Size: 512B - Virtual size: 20B

_RDATA Size: 78KB - Virtual size: 77KB

.rsrc Size: 26KB - Virtual size: 26KB

.reloc Size: 55KB - Virtual size: 55KB

.text
Size: 595KB - Virtual size: 594KB

.rdata
Size: 214KB - Virtual size: 214KB

.data
Size: 349KB - Virtual size: 1.4MB

.d3d9_sh
Size: 512B - Virtual size: 20B

_RDATA
Size: 78KB - Virtual size: 77KB

.rsrc
Size: 26KB - Virtual size: 26KB

.reloc
Size: 55KB - Virtual size: 55KB