eb9674ab67c461ad0de9262fdd533730f945c7e7fff2e58c0739f36179db468d

Sharing

Copy URL Twitter E-mail

General

Target

eb9674ab67c461ad0de9262fdd533730f945c7e7fff2e58c0739f36179db468d
Size

168KB
MD5

125b0ba80c4f0235d120a33443297f17
SHA1

2cb91a11c9d01b7b57fd2197aad2331266ddf2f8
SHA256

eb9674ab67c461ad0de9262fdd533730f945c7e7fff2e58c0739f36179db468d
SHA512

8c4176dcff605ab2e3a52f1446111d7c01a13d8c352d79d5737d1c34c8b56564d2960c61c1fccf1189baf320fc8c15125bec98a2db8dcbee034ad8e9c63929cb
SSDEEP

3072:3On8qazaeMCOMeD3hvN3cXjK3X1yC7tlWR4Z1plmWz:9qauPMeD3hvN3cXjKnIb4Zv

Score

N/A

Malware Config

Signatures

Files

eb9674ab67c461ad0de9262fdd533730f945c7e7fff2e58c0739f36179db468d
.exe windows x86

720f4a147b0decb4dafed0f02feec17d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextMetricsA
SetMapMode
RectVisible
PatBlt
GetPixel
SetTextColor
SetTextAlign
DeleteDC
DeleteObject
GetDeviceCaps
GetClipBox
SelectObject
CreateSolidBrush
GetObjectA
LineTo
RestoreDC
CreatePen
CreateCompatibleDC
GetStockObject
SaveDC
SetStretchBltMode
CreateFontIndirectA
SelectPalette
CreatePalette

user32

GetSystemMetrics
CharNextA
GetDC
GetParent
GetDesktopWindow
TranslateMessage

kernel32

GetDriveTypeA
RemoveDirectoryA
GetThreadLocale
QueryPerformanceCounter
GetCommandLineW
IsDebuggerPresent
GlobalFindAtomA
GetWindowsDirectoryA
CopyFileA
GetVersion
GetStartupInfoA
GlobalFindAtomW
lstrlenA
GetCurrentProcess
GetConsoleOutputCP
lstrlenW
lstrcmpiW
GetCommandLineA
GetModuleHandleA
GetOEMCP
GetACP
VirtualAlloc
MulDiv
GetCurrentThreadId
VirtualFree
GetCurrentProcessId
GetTickCount
lstrcmpA
GetUserDefaultLangID
GetModuleHandleW
GetCurrentThread
GetProcessHeap
lstrcmpiA
SetCurrentDirectoryA
DeleteFileW

glu32

gluNurbsCallback

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Wwrincwu
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Rfofrkov
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

720f4a147b0decb4dafed0f02feec17d

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 12KB - Virtual size: 11KB

Wwrincwu Size: 512B - Virtual size: 4KB

.rdata Size: 25KB - Virtual size: 24KB

Rfofrkov Size: 512B - Virtual size: 4KB

.data Size: 101KB - Virtual size: 101KB

.rsrc Size: 28KB - Virtual size: 56KB

.text
Size: 12KB - Virtual size: 11KB

Wwrincwu
Size: 512B - Virtual size: 4KB

.rdata
Size: 25KB - Virtual size: 24KB

Rfofrkov
Size: 512B - Virtual size: 4KB

.data
Size: 101KB - Virtual size: 101KB

.rsrc
Size: 28KB - Virtual size: 56KB