e2fbdb32776b96169137df51c4fd28ee2616427e4c4efb03e30b1679ee454bdf

Sharing

Copy URL Twitter E-mail

General

Target

e2fbdb32776b96169137df51c4fd28ee2616427e4c4efb03e30b1679ee454bdf
Size

744KB
MD5

846e2eb49c2aa94995b15d0cf80e4f30
SHA1

912a71112aaeeaa28d67c744b003066129c3c7c9
SHA256

e2fbdb32776b96169137df51c4fd28ee2616427e4c4efb03e30b1679ee454bdf
SHA512

85725f4d5276061169b271c6cc85165415970cb44fcf301ecfda1cb5b26e3e988121ecd18c056f7568ce6be12fd76a2ed083e3e12568ce9a1e536612d2765144
SSDEEP

12288:EEah4c3Bx1K3zROPKqLFPKWLZkQ5ZUhYW1/02Yj:bbzihKWLZkCZ+YeS

Score

N/A

Malware Config

Signatures

Files

e2fbdb32776b96169137df51c4fd28ee2616427e4c4efb03e30b1679ee454bdf
.exe windows x86

93540d530b59763ef079152513cd88fa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SwapBuffers
GetPixelFormat
ChoosePixelFormat
DescribePixelFormat
SetPixelFormat

user32

GetClientRect
DefWindowProcA
CreateWindowExA
GetDC
DestroyWindow
ReleaseDC
AttachThreadInput
GetWindowThreadProcessId
SetForegroundWindow
GetForegroundWindow
DispatchMessageA
TranslateMessage
GetMessageA
LoadCursorA
RegisterClassExA
PostMessageA
SetWindowPos
SetParent
EnumDisplayDevicesA
GetWindowLongA
SetWindowLongA

ws2_32

WSAStartup
WSAGetLastError
socket
setsockopt
accept
connect
htons
gethostbyname
send
recv
listen
bind
inet_addr
closesocket

opengl32

wglCreateContext
wglDeleteContext
glGetString
wglGetProcAddress
wglGetCurrentDC
wglGetCurrentContext
wglMakeCurrent

dbghelp

SymInitialize
SymSetOptions
SymFromAddr

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

kernel32

SetEndOfFile
GetLocaleInfoW
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
SetEnvironmentVariableA
CompareStringW
GetProcessHeap
CompareStringA
SetFilePointer
GetTickCount
QueryPerformanceCounter
GetStartupInfoA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LoadLibraryExA
InterlockedExchange
FreeLibrary
SetConsoleCtrlHandler
GetOEMCP
GetACP
GetCPInfo
HeapSize
GetCurrentThread
GetModuleHandleW
UnhandledExceptionFilter
VirtualProtect
GetSystemInfo
VirtualQuery
MultiByteToWideChar
CreateEventA
CloseHandle
SetEvent
GetLastError
WaitForSingleObject
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InterlockedCompareExchange
InterlockedIncrement
InterlockedDecrement
CreateThread
Sleep
GetCurrentProcessId
ReadFile
CreateFileA
WriteFile
DeviceIoControl
GetCurrentThreadId
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
GetProcAddress
LoadLibraryA
SetLastError
TerminateProcess
GetModuleFileNameA
GetCurrentProcess
SetUnhandledExceptionFilter
HeapAlloc
HeapFree
GetTimeZoneInformation
GetSystemTimeAsFileTime
OutputDebugStringA
RaiseException
RtlUnwind
GetModuleHandleA
ExitProcess
GetCommandLineA
GetVersionExA
FatalAppExitA
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate
GetStdHandle
WideCharToMultiByte

Exports

Exports

_HdLoggerInit@4
_PgaUtilsIsHotAttach@0

Sections

.text
Size: 346KB - Virtual size: 346KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 245KB - Virtual size: 586KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

93540d530b59763ef079152513cd88fa

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

ws2_32

opengl32

dbghelp

advapi32

kernel32

Exports

Exports

Sections

.text Size: 346KB - Virtual size: 346KB

.rdata Size: 64KB - Virtual size: 63KB

.data Size: 245KB - Virtual size: 586KB

.idata Size: 5KB - Virtual size: 5KB

.rsrc Size: 74KB - Virtual size: 76KB

.text
Size: 346KB - Virtual size: 346KB

.rdata
Size: 64KB - Virtual size: 63KB

.data
Size: 245KB - Virtual size: 586KB

.idata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 74KB - Virtual size: 76KB