General

Malware Config

Signatures

Files

• 7360d44402a3b0587520eedbedb30b853a5136be34b4a6a83c5b0c1c57ba46f5

  .dll windows:6 windows x86 arch:x86

  6db42dcb1da6d20ff06978ebc4a5d587

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DLL

  Imports

  commondatasetbase

  ?GetModuleDir@Environment@common@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PAX@Z

  ?GetInstance@BugChecker@common@@SAAAV12@XZ

  ?Throw@BugChecker@common@@QAEAAV12@XZ

  ?SetDumpMark@BugChecker@common@@QAEAAV12@_N@Z

  ?Assertion@BugChecker@common@@QAEAAV12@PBD00H@Z

  ??1File@common@@UAE@XZ

  ??0File@common@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z

  ?CopyLen@StringHelper@common@@YA_NPADIPBDZZ

  ??1TimeStamp@common@@QAE@XZ

  ??0TimeStamp@common@@QAE@_J@Z

  ??1DateTime@common@@QAE@XZ

  ??0DateTime@common@@QAE@ABVTimeStamp@1@@Z

  ?WriteLine@TextWriter@common@@QAE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z

  ??0TextWriter@common@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z

  ?GetDirectory@Path@common@@QAE?BV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ

  ??1Path@common@@QAE@XZ

  ??0Path@common@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z

  ?GetSize@File@common@@QBE_KXZ

  kernel32

  GetProcAddress

  FileTimeToDosDateTime

  FindFirstFileW

  FindClose

  FileTimeToLocalFileTime

  MultiByteToWideChar

  FreeLibrary

  LoadLibraryA

  DecodePointer

  IsDebuggerPresent

  IsProcessorFeaturePresent

  QueryPerformanceCounter

  GetCurrentThreadId

  GetSystemTimeAsFileTime

  GetTickCount64

  DisableThreadLibraryCalls

  EncodePointer

  msvcp110

  ?_Orphan_all@_Container_base0@std@@QAEXXZ

  ?_Xlength_error@std@@YAXPBD@Z

  ?_Xout_of_range@std@@YAXPBD@Z

  ?_Xbad_alloc@std@@YAXXZ

  ?_Syserror_map@std@@YAPBDH@Z

  ?_Winerror_map@std@@YAPBDH@Z

  msvcr110

  memchr

  realloc

  _wremove

  tolower

  sprintf

  _lock

  _unlock

  _calloc_crt

  __dllonexit

  _onexit

  ??1type_info@@UAE@XZ

  _vsnprintf

  __CppXcptFilter

  _amsg_exit

  _malloc_crt

  _initterm

  _initterm_e

  _crt_debugger_hook

  __crtUnhandledException

  __crtTerminateProcess

  _except_handler4_common

  ?terminate@@YAXXZ

  __clean_type_info_names_internal

  malloc

  free

  ??2@YAPAXI@Z

  ??3@YAXPAX@Z

  _purecall

  memmove

  memcpy

  floor

  __RTDynamicCast

  _CxxThrowException

  __CxxFrameHandler3

  memset

  Exports

  Exports

  ConfigIntProperty

  CreateComparisonHandle

  ExecuteComparison

  FreeComparisonHandle

  GetComparisonType

  RegisterNotifyCallBack

  Sections

  .text

  Size: 326KB - Virtual size: 325KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 71KB - Virtual size: 70KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 13KB - Virtual size: 14KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 1024B - Virtual size: 816B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 41KB - Virtual size: 40KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ