4f60fa98f3db640f2560c74f94638f6fad0c041b04220d0b1817281497468917

General

Target

4f60fa98f3db640f2560c74f94638f6fad0c041b04220d0b1817281497468917
Size

285KB
MD5

a1484cb3ed870d9010db71f48c060b13
SHA1

1c5631430a8090415c11f7ab63f852042c2fe40d
SHA256

4f60fa98f3db640f2560c74f94638f6fad0c041b04220d0b1817281497468917
SHA512

375e37029a99e233bb9f7477dbb94436cf9235eafa847d6e6865738528e08536ad26e355291c0a4c0015f1ae8fe8c80af5f0e3f0c59e16d62aa4480ce4cad6a4
SSDEEP

6144:zQ2qlyshznbAaIyv8q+pfHjwAea5/cZa9hTDeGiziiu:UbBI+8LrwJ2lizi

Score

N/A

Malware Config

Signatures

Files

4f60fa98f3db640f2560c74f94638f6fad0c041b04220d0b1817281497468917
.exe windows x86

a3f0885285ac63a9e4e2f534828b67fc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

glu32

gluScaleImage
gluSphere
gluBeginTrim
gluUnProject
gluDeleteNurbsRenderer
gluTessProperty
gluDeleteQuadric
gluBeginCurve
gluNurbsCallback
gluPerspective
gluTessBeginContour

user32

AnyPopup
MessageBoxIndirectA
CreateDialogIndirectParamA
SendDlgItemMessageA
GetDesktopWindow
CloseWindow
SetDlgItemTextA

ole32

ReadFmtUserTypeStg
CoFreeLibrary
CoFileTimeNow
CreateAntiMoniker
OleIsCurrentClipboard
GetHGlobalFromILockBytes
OleRegEnumVerbs
OleSetClipboard

comctl32

ord8
ord4
UninitializeFlatSB
PropertySheetW
ord6
DestroyPropertySheetPage
ord5

shlwapi

StrChrIW
StrCmpNA
StrRStrIW
StrStrA
StrRChrW
StrChrW
StrToIntA

kernel32

GetProcAddress
Sleep
VirtualAllocEx
GetModuleHandleW
GetModuleHandleA
GetStartupInfoA

secur32

VerifySignature
EncryptMessage
ExportSecurityContext
DecryptMessage

aclui

ord2
ord1

activeds

ord22
ord3
ord7

msvcrt

_adjust_fdiv
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
__p__commode
_controlfp
_except_handler3
__set_app_type
__p__fmode
_exit

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 260KB - Virtual size: 269KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a3f0885285ac63a9e4e2f534828b67fc

Headers

DLL Characteristics

File Characteristics

Imports

glu32

user32

ole32

comctl32

shlwapi

kernel32

secur32

aclui

activeds

msvcrt

Sections

.text Size: 21KB - Virtual size: 21KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 260KB - Virtual size: 269KB

.text
Size: 21KB - Virtual size: 21KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 260KB - Virtual size: 269KB