0c259716525a817a6e578da4c43fd5dfa499b8b0242afadea91ed43d22909e04

Sharing

Copy URL Twitter E-mail

General

Target

0c259716525a817a6e578da4c43fd5dfa499b8b0242afadea91ed43d22909e04
Size

119KB
MD5

1d6053ecae2aa25d8ee0e0fcd37d81ac
SHA1

0a7927df503956953546f973158e260f54059d89
SHA256

0c259716525a817a6e578da4c43fd5dfa499b8b0242afadea91ed43d22909e04
SHA512

6e94aa59ced9f29097b818b88aa5fdbf8d255c0770b0d6b7be41375f23c616ec30c0c6d4b2ebf585db4b57a6705ae2eb4002c358d1bf3ae09ec0b7ac51ea8db7
SSDEEP

3072:vKlf0YY015HcwfLHPceManyStL9wYuGxCSvA3QMfKgBhlClZ6D1:SffYi8wTvcc5LruGUJxygBhqZ6

Score

N/A

Malware Config

Signatures

Files

0c259716525a817a6e578da4c43fd5dfa499b8b0242afadea91ed43d22909e04
.exe windows x86

d7dc4d61cc73bb79e5a9e4ba6ffb067d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileW
GetStringTypeW
GetLastError
GetProcAddress
BaseUpdateAppcompatCache
GetTempPathW
GetCurrentProcess
GetModuleHandleA
ExitThread
LoadLibraryW
VirtualProtect
VirtualFree
WriteConsoleW
HeapAlloc
VirtualAlloc
lstrlenA
OutputDebugStringA
GetModuleHandleW
BaseInitAppcompatCacheSupport
OutputDebugStringA
FreeLibrary
_lclose
GetWindowsDirectoryA

msvcrt

_controlfp
__p__fmode
_purecall
_wtol
_snwprintf
memcpy
_vsnprintf
_exit
swprintf
wcslen
_ftol
isalpha
free
is_wctype
_wcmdln
memset
__p__commode
wcscpy
wcscmp
wcscat
swscanf
_adjust_fdiv
_except_handler3
_iob
__winitenv
__CxxFrameHandler
wcschr
malloc
strncpy
_cexit
_c_exit
__initenv
__dllonexit

opengl32

glColor4d
glColor3ui
glColor4f
glTexCoord2dv
wglShareLists
glFogfv
glColor4i
glTexCoord2d
glStencilMask
GlmfBeginGlsBlock

shell32

SHGetFolderPathW
ShellExecuteW
SHGetPathFromIDListW
SHGetFileInfoW

user32

BeginPaint
GetParent
GetProcessWindowStation
CheckDlgButton
wsprintfW
ClientToScreen
DialogBoxParamA
RegisterClassA
SetCapture
SendMessageW
LoadCursorA
UpdateLayeredWindow
DestroyWindow
SendMessageA
DispatchMessageW
GetMenuItemCount
SetScrollPos
LoadImageW
IsWindow
UnregisterClassW
ReleaseDC
ScreenToClient
LoadCursorW
LoadMenuW
GetCursorPos
MapWindowPoints
CopyRect
ReleaseCapture

Exports

Exports

KmmbTobyhhTytqsGf
BxsUoytkpPsl
TanudMqnek

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 82B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d7dc4d61cc73bb79e5a9e4ba6ffb067d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

opengl32

shell32

user32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 118B

.data Size: 98KB - Virtual size: 98KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 82B

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 118B

.data
Size: 98KB - Virtual size: 98KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 82B