029fdefd36518a6530972c551390a6a65fe7f6781f448992517d955ca12f01b0

General

Target

029fdefd36518a6530972c551390a6a65fe7f6781f448992517d955ca12f01b0
Size

97KB
MD5

6c8a52f87351ca5ea764740bba580180
SHA1

c998ecc36c22ae96f7c04cfc6ebcaa21ff5772f1
SHA256

029fdefd36518a6530972c551390a6a65fe7f6781f448992517d955ca12f01b0
SHA512

3f899d0380a451a57b7eba44ea31e847e3db432244429744c8b50582a4bb0a7d50c5e14c1507b1c323378ee85102b5bfb2b165747acc6f64c0fdeab7d170c478
SSDEEP

1536:GimNBmqEOtGDKqXe5EryhRi7ySfeH1wtshIgkqZoujkqjQH48ISzkGV5DaQWXudf:FmrNEOc+hRi7+qGLnZdhjiM8P5DaD+h

Score

N/A

Malware Config

Signatures

Files

029fdefd36518a6530972c551390a6a65fe7f6781f448992517d955ca12f01b0
.exe windows x86

4376a4d6e8927a4ee0d9f620f36074ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
GetACP
GlobalFindAtomA
DeleteFileW
IsDebuggerPresent
GetTickCount
SetCurrentDirectoryA
RemoveDirectoryW
GlobalFindAtomW
lstrcmpiW
MulDiv
GetUserDefaultLangID
GetModuleHandleA
GetCurrentThreadId
GetModuleHandleW
GetCurrentThread
GetThreadLocale
GetWindowsDirectoryA
GetCommandLineA
GetVersion
GetConsoleOutputCP
GetCurrentProcess
ExitProcess
lstrcmpA
lstrlenA
GetCommandLineW
lstrlenW
GetStartupInfoA
lstrcmpiA
GetDriveTypeA
GetOEMCP
CopyFileA
RemoveDirectoryA
GetCurrentProcessId
GetProcessHeap
DeleteFileA
VirtualAlloc

gdi32

GetObjectA
CreateSolidBrush
DeleteObject
CreateCompatibleDC
GetDeviceCaps
GetNearestPaletteIndex
CreateFontIndirectA
SetMapMode
SetStretchBltMode
SetTextAlign
GetStockObject
SelectPalette
RectVisible
SaveDC
CreatePen
PatBlt
DeleteDC
CreatePalette
LineTo
RestoreDC
SelectObject
GetTextMetricsA
GetClipBox
SetTextColor
GetPixel

user32

GetParent
GetSystemMetrics
GetDesktopWindow
GetDC
TranslateMessage
CharNextA

glu32

gluQuadricCallback

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zmeampe
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4376a4d6e8927a4ee0d9f620f36074ed

Headers

File Characteristics

Imports

kernel32

gdi32

user32

glu32

Sections

.text Size: 22KB - Virtual size: 21KB

.data Size: 61KB - Virtual size: 61KB

.rsrc Size: 13KB - Virtual size: 41KB

zmeampe Size: - Virtual size: 4KB

.text
Size: 22KB - Virtual size: 21KB

.data
Size: 61KB - Virtual size: 61KB

.rsrc
Size: 13KB - Virtual size: 41KB

zmeampe
Size: - Virtual size: 4KB