86dc762d5d9044a36a0047ae8cbdb89a67d6a9c6c2d09e98153f0aba74d00440

General

Target

86dc762d5d9044a36a0047ae8cbdb89a67d6a9c6c2d09e98153f0aba74d00440
Size

166KB
MD5

049d01d0133a179c8cb4fc1456f0093a
SHA1

9289a360d321f984a9f3161216bebd729f375eeb
SHA256

86dc762d5d9044a36a0047ae8cbdb89a67d6a9c6c2d09e98153f0aba74d00440
SHA512

35660da8a26bf21c8eafbd2fa9f7fbd4a265f7500bc797efd9d5d1e5407b067c9345eefc5e06f276747d77aa4fed9672414ae8939f4c318f090aa25d405db0ce
SSDEEP

3072:Xxhtkpno19vCcsNwkRn+2v0Q3q7kDHQQNNbJFek/7URQ1At:7tI6EX5v0QRTQONbJ4kDw

Score

N/A

Malware Config

Signatures

Files

86dc762d5d9044a36a0047ae8cbdb89a67d6a9c6c2d09e98153f0aba74d00440
.exe windows x86

704656d2f8d9adc4477683b99ebb91d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
CharNextA
GetDC
TranslateMessage
GetSystemMetrics
GetParent

gdi32

GetTextMetricsA
GetObjectA
PatBlt
SetTextColor
SelectPalette
GetDeviceCaps
SelectObject
CreatePen
SetTextAlign
SetMapMode
CreateSolidBrush
GetPixel
CreateCompatibleDC
SetStretchBltMode
GetClipBox
DeleteObject
CreateFontIndirectA
SaveDC
RestoreDC
LineTo
RectVisible
CreatePalette
DeleteDC
GetStockObject

kernel32

IsDebuggerPresent
GetCurrentProcess
lstrcmpiW
VirtualAlloc
DeleteFileW
lstrlenW
GetStartupInfoA
lstrcmpiA
VirtualFree
GetCurrentThread
GetDriveTypeA
GetCurrentProcessId
MulDiv
GetACP
GlobalFindAtomA
GetCommandLineW
GetCurrentThreadId
GetUserDefaultLangID
GetProcessHeap
GetConsoleOutputCP
GetModuleHandleA
SetCurrentDirectoryA
GetWindowsDirectoryA
CopyFileA
GetCommandLineA
GetOEMCP
GlobalFindAtomW
GetTickCount
QueryPerformanceCounter
DeleteFileA
lstrcmpA
lstrlenA
RemoveDirectoryA
GetModuleHandleW

glu32

gluNurbsCallback

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Raknurpl
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Ricnay X
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

704656d2f8d9adc4477683b99ebb91d5

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 11KB - Virtual size: 11KB

Raknurpl Size: 512B - Virtual size: 4KB

.rdata Size: 25KB - Virtual size: 24KB

Ricnay X Size: 512B - Virtual size: 4KB

.data Size: 100KB - Virtual size: 100KB

.rsrc Size: 27KB - Virtual size: 26KB

.text
Size: 11KB - Virtual size: 11KB

Raknurpl
Size: 512B - Virtual size: 4KB

.rdata
Size: 25KB - Virtual size: 24KB

Ricnay X
Size: 512B - Virtual size: 4KB

.data
Size: 100KB - Virtual size: 100KB

.rsrc
Size: 27KB - Virtual size: 26KB