6d95d70c95126f7ccd93779a82187f42742d89948e2c2ab6bbc104659eb63783

General

Target

6d95d70c95126f7ccd93779a82187f42742d89948e2c2ab6bbc104659eb63783
Size

581KB
MD5

7acf64096b7bc129966c8509450a5a40
SHA1

0d747f7b75dc406c16af663489967c3f5b912a9b
SHA256

6d95d70c95126f7ccd93779a82187f42742d89948e2c2ab6bbc104659eb63783
SHA512

2846a9516fd2e7ebc6d715a377598410adcc7baedcc49bd90c1f6bef19fe71eb7c9d02513797f0ee76155cccf7a36a7f3b40a8d55a80e44805c1d33f757a3099
SSDEEP

12288:A2dcc3zvSUGljdYqvUkKr06SaGLB88B0oOR4xce:3N6UivvUkKA6SfLBPB0oOiR

Score

N/A

Malware Config

Signatures

Files

6d95d70c95126f7ccd93779a82187f42742d89948e2c2ab6bbc104659eb63783
.exe windows x86

8052a795d31527bae2a12ca9d9683bd4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidLocale
VirtualAlloc
LoadLibraryA
GetHandleInformation
CreateWaitableTimerA
GetProcAddress
GetLocalTime
GetFileType
PrepareTape
SwitchToFiber
EscapeCommFunction
GetModuleHandleA
GetVersion
GetNumberFormatA
GetConsoleMode
FreeLibrary
GetSystemTime
GetStartupInfoA

opengl32

glLightiv
glRasterPos4d
wglUseFontOutlinesA
glIndexd
glColor4us
glColor3f
wglDeleteContext
glTranslatef
glVertex2d
glVertex3fv
glGetLightiv
wglCreateContext
wglMakeCurrent
glEnableClientState
wglDescribePixelFormat
glTexParameterf
glVertex3dv
glColor4uiv
glGetTexLevelParameterfv
glRecti
glCopyPixels
glTexEnvi
glMap1d
glIndexub
glGetFloatv
glFeedbackBuffer
wglGetCurrentDC

shell32

StrRChrIW
StrRChrW
StrRStrIA

shlwapi

PathCompactPathA
PathSkipRootW
UrlGetLocationW
SHRegWriteUSValueA
StrTrimA
PathIsFileSpecA
SHRegQueryUSValueA
SHOpenRegStreamA
PathIsUNCServerW
SHSetValueA
PathAddBackslashA
PathIsSameRootW
IntlStrEqWorkerA
StrCmpIW

msvcrt

_onexit
_getdllprocaddr
fwrite
_unlink
ferror
fclose
fprintf
memset
ftell
fwprintf
feof
printf
fseek
sprintf
fputs
fopen
fsetpos
fputc
remove
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__dllonexit
_controlfp
_except_handler3
fread
__set_app_type
__p__fmode
__p__commode

Sections

.text
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 532KB - Virtual size: 530KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8052a795d31527bae2a12ca9d9683bd4

Headers

File Characteristics

Imports

kernel32

opengl32

shell32

shlwapi

msvcrt

Sections

.text Size: 40KB - Virtual size: 38KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 532KB - Virtual size: 530KB

.text
Size: 40KB - Virtual size: 38KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 532KB - Virtual size: 530KB