cb81f4447678ad89862659e8871afde6fdeaf0543f39c4c14de6d24350b60e7b

Sharing

Copy URL Twitter E-mail

General

Target

cb81f4447678ad89862659e8871afde6fdeaf0543f39c4c14de6d24350b60e7b
Size

746KB
MD5

42426363037ecd81c586306ec385ec50
SHA1

33e306c91a7b33b874ec8d870a6d117deef934c2
SHA256

cb81f4447678ad89862659e8871afde6fdeaf0543f39c4c14de6d24350b60e7b
SHA512

d09984a30882448222a995e87208768260264be1c73b69eb7cdfc1bf4b1c89423e7327e6d458a6f1e15f92123c7aad836c3ec3ec78b0ab14339c0c45f84f8e18
SSDEEP

12288:NapFrHxw1o4K+8RgPKqLtpKWLZEMpZZqD0kK:N4+80LKWLZEMZqD4

Score

N/A

Malware Config

Signatures

Files

cb81f4447678ad89862659e8871afde6fdeaf0543f39c4c14de6d24350b60e7b
.exe windows x86

93540d530b59763ef079152513cd88fa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SwapBuffers
GetPixelFormat
ChoosePixelFormat
DescribePixelFormat
SetPixelFormat

user32

GetClientRect
DefWindowProcA
CreateWindowExA
GetDC
DestroyWindow
ReleaseDC
AttachThreadInput
GetWindowThreadProcessId
SetForegroundWindow
GetForegroundWindow
DispatchMessageA
TranslateMessage
GetMessageA
LoadCursorA
RegisterClassExA
PostMessageA
SetWindowPos
SetParent
EnumDisplayDevicesA
GetWindowLongA
SetWindowLongA

ws2_32

WSAStartup
WSAGetLastError
socket
setsockopt
accept
connect
htons
gethostbyname
send
recv
listen
bind
inet_addr
closesocket

opengl32

wglCreateContext
wglDeleteContext
glGetString
wglGetProcAddress
wglGetCurrentDC
wglGetCurrentContext
wglMakeCurrent

dbghelp

SymInitialize
SymSetOptions
SymFromAddr

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

kernel32

SetEndOfFile
GetLocaleInfoW
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
SetEnvironmentVariableA
CompareStringW
GetProcessHeap
CompareStringA
SetFilePointer
GetTickCount
QueryPerformanceCounter
GetStartupInfoA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LoadLibraryExA
InterlockedExchange
FreeLibrary
SetConsoleCtrlHandler
GetOEMCP
GetACP
GetCPInfo
HeapSize
GetCurrentThread
GetModuleHandleW
UnhandledExceptionFilter
VirtualProtect
GetSystemInfo
VirtualQuery
MultiByteToWideChar
CreateEventA
CloseHandle
SetEvent
GetLastError
WaitForSingleObject
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InterlockedCompareExchange
InterlockedIncrement
InterlockedDecrement
CreateThread
Sleep
GetCurrentProcessId
ReadFile
CreateFileA
WriteFile
DeviceIoControl
GetCurrentThreadId
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
GetProcAddress
LoadLibraryA
SetLastError
TerminateProcess
GetModuleFileNameA
GetCurrentProcess
SetUnhandledExceptionFilter
HeapAlloc
HeapFree
GetTimeZoneInformation
GetSystemTimeAsFileTime
OutputDebugStringA
RaiseException
RtlUnwind
GetModuleHandleA
ExitProcess
GetCommandLineA
GetVersionExA
FatalAppExitA
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate
GetStdHandle
WideCharToMultiByte

Exports

Exports

_HdLoggerInit@4
_PgaUtilsIsHotAttach@0

Sections

.text
Size: 346KB - Virtual size: 346KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 245KB - Virtual size: 586KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

93540d530b59763ef079152513cd88fa

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

ws2_32

opengl32

dbghelp

advapi32

kernel32

Exports

Exports

Sections

.text Size: 346KB - Virtual size: 346KB

.rdata Size: 64KB - Virtual size: 63KB

.data Size: 245KB - Virtual size: 586KB

.idata Size: 5KB - Virtual size: 5KB

.rsrc Size: 77KB - Virtual size: 80KB

.text
Size: 346KB - Virtual size: 346KB

.rdata
Size: 64KB - Virtual size: 63KB

.data
Size: 245KB - Virtual size: 586KB

.idata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 77KB - Virtual size: 80KB