7a72809e5d0f286107f848867fb75fff9c8e81106169f9550e893f6f52ec362d

General

Target

7a72809e5d0f286107f848867fb75fff9c8e81106169f9550e893f6f52ec362d
Size

168KB
MD5

92637c07a7082e5e9f48af75347777f0
SHA1

1827a7f38fffac028e9f21c336a21b7073721b86
SHA256

7a72809e5d0f286107f848867fb75fff9c8e81106169f9550e893f6f52ec362d
SHA512

06e94860b74f633902fe6b8a83ef49f66963fa1466fe130a4a2d21a6b254242e17bd3a705e7f940548aedc887d364c61cae197f426e0a36358b6ad6c5ebc80e8
SSDEEP

3072:2wgD6UreuNawSJOcqasZDQk0IU6705T16msO:2J8wSJsaspQ/yaT7

Score

N/A

Malware Config

Signatures

Files

7a72809e5d0f286107f848867fb75fff9c8e81106169f9550e893f6f52ec362d
.exe windows x86

f32fb4b7989c0bf2195d4eaad79ed90d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
GetCurrentThreadId
GetACP
lstrlenA
GetUserDefaultLangID
GetOEMCP
GetConsoleOutputCP
RemoveDirectoryA
GetTickCount
GetVersion
lstrcmpA
GlobalFindAtomW
GetWindowsDirectoryA
GetStartupInfoA
GetThreadLocale
DeleteFileA
lstrcmpiW
SetCurrentDirectoryA
DeleteFileW
GetCommandLineW
lstrcmpiA
GetCommandLineA
GetCurrentProcessId
GlobalFindAtomA
GetCurrentThread
QueryPerformanceCounter
GetDriveTypeA
IsDebuggerPresent
GetCurrentProcess
CopyFileA
GetModuleHandleA
VirtualAlloc
VirtualFree

gdi32

CreateFontIndirectA
GetObjectA
CreateSolidBrush
SetStretchBltMode
SetTextColor
PatBlt
GetDeviceCaps
SelectPalette
GetClipBox
GetPixel
GetTextMetricsA
SetTextAlign
SetMapMode
RectVisible
GetStockObject
CreatePen
SaveDC
DeleteObject
CreateCompatibleDC
LineTo
DeleteDC
CreatePalette
SelectObject
RestoreDC

user32

CharNextA
GetSystemMetrics
TranslateMessage
GetDesktopWindow
GetDC
GetParent

glu32

gluNurbsCallback

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Rtrjetgd
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Pwlrugyo
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f32fb4b7989c0bf2195d4eaad79ed90d

Headers

File Characteristics

Imports

kernel32

gdi32

user32

glu32

Sections

.text Size: 10KB - Virtual size: 10KB

Rtrjetgd Size: 512B - Virtual size: 4KB

.rdata Size: 25KB - Virtual size: 24KB

Pwlrugyo Size: 512B - Virtual size: 4KB

.data Size: 101KB - Virtual size: 101KB

.rsrc Size: 29KB - Virtual size: 29KB

.text
Size: 10KB - Virtual size: 10KB

Rtrjetgd
Size: 512B - Virtual size: 4KB

.rdata
Size: 25KB - Virtual size: 24KB

Pwlrugyo
Size: 512B - Virtual size: 4KB

.data
Size: 101KB - Virtual size: 101KB

.rsrc
Size: 29KB - Virtual size: 29KB