e5c92e1057375a055fdac3b2f374edcfb11c8f70e60dff3e074dcc69f135b93e

Sharing

Copy URL Twitter E-mail

General

Target

e5c92e1057375a055fdac3b2f374edcfb11c8f70e60dff3e074dcc69f135b93e
Size

235KB
MD5

6d23ca64e2b283e6e61c7eb31007613d
SHA1

116a7665ec06a6c61eb1ced2074e98d5feef526c
SHA256

e5c92e1057375a055fdac3b2f374edcfb11c8f70e60dff3e074dcc69f135b93e
SHA512

51b223b3329dad5aa1c552c66f329e059f3bd983f9e181f28600d7aa1986710abe0e6dded144c2fe3a7b74b4d014e067f3dcbe10702c6082c5e17086b1d11a0e
SSDEEP

6144:IpPzwOynCgeeNMPaZRupn+aZGVXpEqI2JX6gAy/Awq:Ip6Ec8B+XLEqIeX6gAy/6

Score

N/A

Malware Config

Signatures

Files

e5c92e1057375a055fdac3b2f374edcfb11c8f70e60dff3e074dcc69f135b93e
.dll windows x86

8a4937745a6988888b3ba27421542402

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ot11-openthreads

??EAtomic@OpenThreads@@QAEIXZ

osg62-osg

?setEventCallback@Drawable@osg@@UAEXPAUEventCallback@12@@Z
?setUpdateCallback@Drawable@osg@@UAEXPAUUpdateCallback@12@@Z
?compileGLObjects@Drawable@osg@@UBEXAAVRenderInfo@2@@Z
?getGLObjectSizeHint@Drawable@osg@@UBEIXZ
?dirtyDisplayList@Drawable@osg@@UAEXXZ
?setUseVertexBufferObjects@Drawable@osg@@UAEX_N@Z
?asGeometry@Drawable@osg@@UAEPAVGeometry@2@XZ
?asGeometry@Drawable@osg@@UBEPBVGeometry@2@XZ
?computeDataVariance@Drawable@osg@@UAEXXZ
??0Quat@osg@@QAE@ABVVec4f@1@@Z
?setThreadSafeRefUnref@Referenced@osg@@UAEX_N@Z
?accept@Drawable@osg@@UAEXAAVAttributeFunctor@12@@Z
?accept@Drawable@osg@@UBEXAAVPrimitiveIndexFunctor@2@@Z
?supports@Drawable@osg@@UBE_NABVPrimitiveIndexFunctor@2@@Z
?setDrawCallback@Drawable@osg@@UAEXPAUDrawCallback@12@@Z
?unref@Referenced@osg@@QBEXXZ
?setCullCallback@Drawable@osg@@UAEXPAUCullCallback@12@@Z

osg62-osgdb

?addDotOsgWrapper@Registry@osgDB@@QAEXPAVDotOsgWrapper@2@@Z
?instance@Registry@osgDB@@SAPAV12@_N@Z
??1DotOsgWrapper@osgDB@@MAE@XZ
?removeDotOsgWrapper@Registry@osgDB@@QAEXPAVDotOsgWrapper@2@@Z
?moveOut@Output@osgDB@@QAEXXZ
?moveIn@Output@osgDB@@QAEXXZ
?indent@Output@osgDB@@QAEAAV12@XZ
?wrapString@Output@osgDB@@QAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV34@@Z
??EFieldReaderIterator@osgDB@@QAEAAV01@XZ
?getNoNestedBrackets@Field@osgDB@@QAEHXZ
?getInt@Field@osgDB@@QBE_NAAH@Z
?getStr@Field@osgDB@@QBEPBDXZ
?matchSequence@FieldReaderIterator@osgDB@@QAE_NPBD@Z
?getFloat@Field@osgDB@@QBE_NAAM@Z
??YFieldReaderIterator@osgDB@@QAEAAV01@H@Z
?getUInt@Field@osgDB@@QBE_NAAI@Z
?matchWord@Field@osgDB@@QBE_NPBD@Z
??AFieldReaderIterator@osgDB@@QAEAAVField@1@H@Z
??0DotOsgWrapper@osgDB@@QAE@PAVObject@osg@@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@1P6A_NAAV23@AAVInput@1@@ZP6A_NABV23@AAVOutput@1@@ZW4ReadWriteMode@01@@Z

osg62-osgtext

?computePositions@Text3D@osgText@@MBEXI@Z
?computeGlyphRepresentation@Text3D@osgText@@MAEXXZ
??1Text3D@osgText@@MAE@XZ
?computePositions@Text@osgText@@MBEXI@Z
?accept@Text@osgText@@UBEXAAVConstAttributeFunctor@Drawable@osg@@@Z
?accept@Text@osgText@@UBEXAAVPrimitiveFunctor@osg@@@Z
?supports@Text@osgText@@UBE_NABVAttributeFunctor@Drawable@osg@@@Z
?supports@Text@osgText@@UBE_NABVConstAttributeFunctor@Drawable@osg@@@Z
?supports@Text@osgText@@UBE_NABVPrimitiveFunctor@osg@@@Z
?drawImplementation@Text@osgText@@UBEXAAVRenderInfo@osg@@@Z
?computeBound@TextBase@osgText@@UBE?AV?$BoundingBoxImpl@VVec3f@osg@@@osg@@XZ
?releaseGLObjects@Text@osgText@@UBEXPAVState@osg@@@Z
?resizeGLObjectBuffers@Text@osgText@@UAEXI@Z
?className@Text@osgText@@UBEPBDXZ
?libraryName@Text@osgText@@UBEPBDXZ
?isSameKindAs@Text@osgText@@UBE_NPBVObject@osg@@@Z
?clone@Text@osgText@@UBEPAVObject@osg@@ABVCopyOp@4@@Z
?cloneType@Text@osgText@@UBEPAVObject@osg@@XZ
?setThreadSafeRefUnref@Text@osgText@@UAEX_N@Z
??0Text@osgText@@QAE@XZ
?getFont@Text@osgText@@QBEPBVFont@2@XZ
?setFont@Text@osgText@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?accept@Text3D@osgText@@UBEXAAVConstAttributeFunctor@Drawable@osg@@@Z
?setBackdropType@Text@osgText@@QAEXW4BackdropType@12@@Z
?setBackdropOffset@Text@osgText@@QAEXMM@Z
?setBackdropColor@Text@osgText@@QAEXABVVec4f@osg@@@Z
?setBackdropImplementation@Text@osgText@@QAEXW4BackdropImplementation@12@@Z
?setColorGradientMode@Text@osgText@@QAEXW4ColorGradientMode@12@@Z
?setColorGradientCorners@Text@osgText@@QAEXABVVec4f@osg@@000@Z
?setFontResolution@TextBase@osgText@@QAEXII@Z
?setCharacterSize@TextBase@osgText@@QAEXMM@Z
?setMaximumWidth@TextBase@osgText@@QAEXM@Z
?setMaximumHeight@TextBase@osgText@@QAEXM@Z
?setLineSpacing@TextBase@osgText@@QAEXM@Z
?setAlignment@TextBase@osgText@@QAEXW4AlignmentType@12@@Z
?setAxisAlignment@TextBase@osgText@@QAEXW4AxisAlignment@12@@Z
?setRotation@TextBase@osgText@@QAEXABVQuat@osg@@@Z
?setAutoRotateToScreen@TextBase@osgText@@QAEX_N@Z
?setLayout@TextBase@osgText@@QAEXW4Layout@12@@Z
?setPosition@TextBase@osgText@@QAEXABVVec3f@osg@@@Z
?setDrawMode@TextBase@osgText@@QAEXI@Z
?setBoundingBoxMargin@TextBase@osgText@@QAEXM@Z
?setText@TextBase@osgText@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0String@osgText@@QAE@XZ
?setText@TextBase@osgText@@QAEXABVString@2@@Z
??1String@osgText@@QAE@XZ
?accept@Text3D@osgText@@UBEXAAVPrimitiveFunctor@osg@@@Z
?supports@Text3D@osgText@@UBE_NABVAttributeFunctor@Drawable@osg@@@Z
?supports@Text3D@osgText@@UBE_NABVConstAttributeFunctor@Drawable@osg@@@Z
?supports@Text3D@osgText@@UBE_NABVPrimitiveFunctor@osg@@@Z
?drawImplementation@Text3D@osgText@@UBEXAAVRenderInfo@osg@@@Z
?computeBound@Text3D@osgText@@UBE?AV?$BoundingBoxImpl@VVec3f@osg@@@osg@@XZ
?releaseGLObjects@Text3D@osgText@@UBEXPAVState@osg@@@Z
?resizeGLObjectBuffers@Text3D@osgText@@UAEXI@Z
?className@Text3D@osgText@@UBEPBDXZ
?computeGlyphRepresentation@Text@osgText@@MAEXXZ
?isSameKindAs@Text3D@osgText@@UBE_NPBVObject@osg@@@Z
?clone@Text3D@osgText@@UBEPAVObject@osg@@ABVCopyOp@4@@Z
?cloneType@Text3D@osgText@@UBEPAVObject@osg@@XZ
?setThreadSafeRefUnref@Text3D@osgText@@UAEX_N@Z
??0Text3D@osgText@@QAE@XZ
?getFont@Text3D@osgText@@QBEPBVFont3D@2@XZ
??1Text@osgText@@MAE@XZ
?setCharacterDepth@Text3D@osgText@@QAEXM@Z
?setColor@Text@osgText@@QAEXABVVec4f@osg@@@Z
?setRenderMode@Text3D@osgText@@QAEXW4RenderMode@12@@Z
?libraryName@Text3D@osgText@@UBEPBDXZ
?setFont@Text3D@osgText@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z

msvcp90

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?_Lock@_Mutex@std@@QAEXXZ
?_Unlock@_Mutex@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z

msvcr90

__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
?terminate@@YAXXZ
_encoded_null
free
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
memmove_s
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
_invalid_parameter_noinfo
__CxxFrameHandler3
??0exception@std@@QAE@XZ
??3@YAXPAX@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_except_handler4_common
__clean_type_info_names_internal
_initterm

kernel32

GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetCurrentProcessId

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 195KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8a4937745a6988888b3ba27421542402

Headers

DLL Characteristics

File Characteristics

Imports

ot11-openthreads

osg62-osg

osg62-osgdb

osg62-osgtext

msvcp90

msvcr90

kernel32

Sections

.text Size: 19KB - Virtual size: 18KB

.rdata Size: 14KB - Virtual size: 14KB

.data Size: 1024B - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

.text Size: 195KB - Virtual size: 196KB

.text
Size: 19KB - Virtual size: 18KB

.rdata
Size: 14KB - Virtual size: 14KB

.data
Size: 1024B - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB

.text
Size: 195KB - Virtual size: 196KB