7fb6624833e6582d91d02d7048138cb834cb94a9584017cfd2c245cef8ab2f26

Sharing

Copy URL Twitter E-mail

General

Target

7fb6624833e6582d91d02d7048138cb834cb94a9584017cfd2c245cef8ab2f26
Size

458KB
MD5

84016c014e6da93c9c19ae3fb8dcde10
SHA1

df78104bc9fc9c608295a7ad3c626378ad865c78
SHA256

7fb6624833e6582d91d02d7048138cb834cb94a9584017cfd2c245cef8ab2f26
SHA512

b4e1c522f401245d841e15b17b9010694dedbfed3829356222f9a5c72bdb2b6e1e2cfff935f1a7e60f9e0d6ac73349f1a9824b5cbd677a449d915a9fb431e85b
SSDEEP

12288:Dt5CcElicvlMGKclprPbW2M8zV2UMdrito:DXCcElfdMGKkB1zVBOrgo

Score

N/A

Malware Config

Signatures

Files

7fb6624833e6582d91d02d7048138cb834cb94a9584017cfd2c245cef8ab2f26
.exe windows x86

af8f35f42ba58632938e8a90999996c5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsCharUpperW
InflateRect
MessageBoxW
DlgDirSelectExA
DlgDirSelectExW
UnionRect
VkKeyScanExW
CreateMDIWindowA
CallNextHookEx
SetMenuInfo
RegisterClassExA
GetAltTabInfoA

opengl32

glColor3f
glVertex3f

dbghelp

SymGetLineNext64
SymFunctionTableAccess64
SymEnumerateSymbolsW64
SymGetModuleInfo64
SymEnumSourceFiles

kernel32

TlsAlloc
SetEnvironmentVariableA
CompareStringW
HeapSize
LoadLibraryW
IsProcessorFeaturePresent
RtlUnwind
LCMapStringW
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
GetStdHandle
WriteFile
LocalFree
LocalAlloc
HeapSetInformation
AssignProcessToJobObject
VerLanguageNameA
LoadLibraryA
SetCriticalSectionSpinCount
GlobalUnWire
GetUserDefaultLCID
InterlockedDecrement
InterlockedIncrement
GetTimeFormatA
GetDateFormatA
GetLastError
HeapReAlloc
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoW
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
TerminateProcess
GetCurrentProcess
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
SetLastError
GetCurrentThreadId
GetProcAddress
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetACP
GetOEMCP
IsValidCodePage
Sleep
GetLocaleInfoW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
MultiByteToWideChar
WideCharToMultiByte
GetTimeZoneInformation
HeapCreate
ExitProcess

Sections

.text
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 428KB - Virtual size: 428KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af8f35f42ba58632938e8a90999996c5

Headers

DLL Characteristics

File Characteristics

Imports

user32

opengl32

dbghelp

kernel32

Sections

.text Size: 73KB - Virtual size: 72KB

.rdata Size: 14KB - Virtual size: 14KB

.data Size: 4KB - Virtual size: 14KB

.rsrc Size: 428KB - Virtual size: 428KB

.text
Size: 73KB - Virtual size: 72KB

.rdata
Size: 14KB - Virtual size: 14KB

.data
Size: 4KB - Virtual size: 14KB

.rsrc
Size: 428KB - Virtual size: 428KB