9a740fe0ca16aaa57b161226f5d4b05bbd2acaf5aa8e75c573b27c020d50ae76

Sharing

Copy URL

Twitter E-mail

General

Target

9a740fe0ca16aaa57b161226f5d4b05bbd2acaf5aa8e75c573b27c020d50ae76
Size

170KB
MD5

65a712fe7ab0b4e63e4a84cb99bc3b13
SHA1

23e1e633aa7184d2438cbf7aee124c7bf9c3b0bf
SHA256

9a740fe0ca16aaa57b161226f5d4b05bbd2acaf5aa8e75c573b27c020d50ae76
SHA512

e50a621c2f7694337e48301193c59911d59ac64927b866f9d98005261faa84445d379bef54b376f996f65b08df105b0c73a1ffd177aaa27b2a87fc71a0f9c5cd
SSDEEP

3072:z7uTlC7rIV4n1HHfO62EH/agzEk4Ltp+TB6At4OXV/0oz:+lCJlf2EH/agzEk4yTBP4YR

Score

N/A

Malware Config

Signatures

Files

9a740fe0ca16aaa57b161226f5d4b05bbd2acaf5aa8e75c573b27c020d50ae76
.exe windows x86

50e4cd1a2ccecd784c18c22125eb3231

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
GetParent
TranslateMessage
GetSystemMetrics
CharNextA
GetDC

kernel32

DeleteFileA
GetWindowsDirectoryA
GetModuleHandleA
SetCurrentDirectoryA
CopyFileA
MulDiv
GetCurrentThreadId
GlobalFindAtomW
QueryPerformanceCounter
lstrcmpA
GetConsoleOutputCP
RemoveDirectoryA
GetUserDefaultLangID
GetModuleHandleW
GetProcessHeap
GetTickCount
lstrlenA
lstrlenW
GetDriveTypeA
GetCurrentProcessId
IsDebuggerPresent
DeleteFileW
GetVersion
lstrcmpiW
GetCurrentProcess
GetCurrentThread
GlobalFindAtomA
GetStartupInfoA
GetCommandLineW
lstrcmpiA
GetCommandLineA
GetThreadLocale
GetACP
GetOEMCP
VirtualAlloc
VirtualFree

gdi32

PatBlt
GetDeviceCaps
SetTextAlign
RestoreDC
CreatePalette
RectVisible
CreateFontIndirectA
GetTextMetricsA
DeleteObject
SaveDC
CreateCompatibleDC
CreatePen
SetMapMode
DeleteDC
GetObjectA
GetClipBox
GetPixel
SelectPalette
SetStretchBltMode
LineTo
SetTextColor
CreateSolidBrush
SelectObject
GetStockObject

glu32

gluNurbsCallback

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Taefylcq
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Knanhxdn
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

50e4cd1a2ccecd784c18c22125eb3231

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

gdi32

glu32

Sections

.text Size: 10KB - Virtual size: 10KB

Taefylcq Size: 512B - Virtual size: 4KB

.rdata Size: 25KB - Virtual size: 25KB

Knanhxdn Size: 512B - Virtual size: 4KB

.data Size: 101KB - Virtual size: 101KB

.rsrc Size: 30KB - Virtual size: 58KB

.text
Size: 10KB - Virtual size: 10KB

Taefylcq
Size: 512B - Virtual size: 4KB

.rdata
Size: 25KB - Virtual size: 25KB

Knanhxdn
Size: 512B - Virtual size: 4KB

.data
Size: 101KB - Virtual size: 101KB

.rsrc
Size: 30KB - Virtual size: 58KB