9f14dca012ad7890724f777a833c588e302f085685e22d7bedef4222714ce66c

Sharing

Copy URL

Twitter E-mail

General

Target

9f14dca012ad7890724f777a833c588e302f085685e22d7bedef4222714ce66c
Size

137KB
MD5

0d4b22fcfac3637a61daa1d76459ecf0
SHA1

b7ed6e56f11e6f84e114094d3ded661771ee9506
SHA256

9f14dca012ad7890724f777a833c588e302f085685e22d7bedef4222714ce66c
SHA512

2f08c6ccd8bbf30b350cd689142524831dd578a6863380bcaf21107579d5a38de48994ebbbeb96b9e0a6fb24ed85bfe349f4d672771c6f7877886051bf17ddf0
SSDEEP

3072:ClCp+hibd/0rZAKyZ+7Uig6paOx4dbxF5jx9np6KbJTOp:QUOx6Pjo+TOp

Score

N/A

Malware Config

Signatures

Files

9f14dca012ad7890724f777a833c588e302f085685e22d7bedef4222714ce66c
.exe windows x86

f122085a6d4fbe2921b33081c2f5b960

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

aif_core

??0AutoInitializer@Core@AIF@@QAE@XZ
??3@YAXPAXW4MemoryType@AIF@@PBDH@Z
?SetBIBGetAddressProc@AIF@@YAXP6APAXPBD00@Z@Z
?convertString@AIF@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$AIFAllocator@D@AIF@@@std@@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@3@@Z
??1AutoInitializer@Core@AIF@@QAE@XZ
?what@ExceptionBase@AIF@@UBEPBDXZ
??1ExceptionBase@AIF@@UAE@XZ
??2@YAPAXIW4MemoryType@AIF@@PBDH@Z

aif_ogl

??1InitOptions@ExtensionManager@OGL@AIF@@QAE@XZ
??0AutoInitializer@OGL@AIF@@QAE@PAVContext@12@ABVInitOptions@ExtensionManager@12@@Z
??0InitOptions@ExtensionManager@OGL@AIF@@QAE@XZ
?primaryDisplayDevice@ContextOffscreen@OGL@AIF@@SAABU_DISPLAY_DEVICEA@@XZ
?makeCurrent@Context@OGL@AIF@@UBEXXZ
??1ContextOffscreen@OGL@AIF@@UAE@XZ
??1AutoInitializer@OGL@AIF@@QAE@XZ
??0ContextOffscreen@OGL@AIF@@QAE@ABU_DISPLAY_DEVICEA@@@Z

data_flow

??1AutoInitializer@DataFlow@AIF@@QAE@XZ
??0AutoInitializer@DataFlow@AIF@@QAE@XZ

image_runtime

??0AutoInitializer@ImageRuntime@AIF@@QAE@PBVContext@OGL@2@ABVConfiguration@VideoMemory@2@@Z
??1Configuration@VideoMemory@AIF@@QAE@XZ
??1AutoInitializer@ImageRuntime@AIF@@QAE@XZ
??0Configuration@VideoMemory@AIF@@QAE@XZ

image_compiler

??1HBCPerPixelFunctionsBackEndCompiler@ImageCompiler@AIF@@QAE@XZ
??0KernelFrontEndCompiler@ImageCompiler@AIF@@QAE@V?$basic_string@DU?$char_traits@D@std@@V?$AIFAllocator@D@AIF@@@std@@V?$shared_ptr@$$CBVFunctionLibrary@ImageCompiler@AIF@@@boost@@ABV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$AIFAllocator@D@AIF@@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$AIFAllocator@D@AIF@@@std@@@2@V?$AIFAllocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$AIFAllocator@D@AIF@@@std@@V12@@std@@@AIF@@@4@@Z
?binaryProgram@HBCPerPixelCompiledFunctions@ImageCompiler@AIF@@QBE?AV?$vector@EV?$AIFAllocator@E@AIF@@@std@@XZ
?perPixelCompiledFunctions@HBCPerPixelFunctionsBackEndCompiler@ImageCompiler@AIF@@QBE?AVHBCPerPixelCompiledFunctions@23@XZ
??0HBCPerPixelFunctionsBackEndCompiler@ImageCompiler@AIF@@QAE@V?$shared_ptr@VKernel@ImageCompiler@AIF@@@boost@@@Z
??1AutoInitializer@ImageCompiler@AIF@@QAE@XZ
?analyze@HBCKernelAnalyzer@ImageCompiler@AIF@@QAEXV?$shared_ptr@VKernel@ImageCompiler@AIF@@@boost@@@Z
??0HBCKernelAnalyzer@ImageCompiler@AIF@@QAE@XZ
??1SwizzleSimplifier@ImageCompiler@AIF@@UAE@XZ
?analyze@SwizzleSimplifier@ImageCompiler@AIF@@QAEXV?$shared_ptr@VKernel@ImageCompiler@AIF@@@boost@@@Z
??0AutoInitializer@ImageCompiler@AIF@@QAE@XZ
??1KernelFrontEndCompiler@ImageCompiler@AIF@@QAE@XZ
??1HBCKernelAnalyzer@ImageCompiler@AIF@@UAE@XZ
?kernel@KernelFrontEndCompiler@ImageCompiler@AIF@@QBE?AV?$shared_ptr@VKernel@ImageCompiler@AIF@@@boost@@XZ
??1HBCPerPixelCompiledFunctions@ImageCompiler@AIF@@QAE@XZ
??0SwizzleSimplifier@ImageCompiler@AIF@@QAE@XZ
?isValid@Kernel@ImageCompiler@AIF@@QBE_NXZ
?errorsAndWarnings@Kernel@ImageCompiler@AIF@@QBEABV?$vector@UErrorWarningInfo@ImageCompiler@AIF@@V?$AIFAllocator@UErrorWarningInfo@ImageCompiler@AIF@@@3@@std@@XZ

bib

ord11
ord4

msvcp90

??_D?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Xlen@_String_base@std@@SAXXZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEX_NI@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Xran@_String_base@std@@SAXXZ
?compare@?$char_traits@D@std@@SAHPBD0I@Z
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Unlock@_Mutex@std@@QAEXXZ
?_Lock@_Mutex@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z

msvcr90

memcpy
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
memset
__RTDynamicCast
memmove_s
_controlfp_s
_invoke_watson
_except_handler4_common
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
__initenv
exit
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
??0exception@std@@QAE@ABQBDH@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??3@YAXPAX@Z
??0exception@std@@QAE@XZ
__CxxFrameHandler3
_CxxThrowException
??0exception@std@@QAE@ABV01@@Z
??2@YAPAXI@Z
memcpy_s
_decode_pointer

kernel32

GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
GetCurrentProcessId
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime
UnhandledExceptionFilter

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f122085a6d4fbe2921b33081c2f5b960

Headers

DLL Characteristics

File Characteristics

Imports

aif_core

aif_ogl

data_flow

image_runtime

image_compiler

bib

msvcp90

msvcr90

kernel32

Sections

.text Size: 33KB - Virtual size: 32KB

.rdata Size: 19KB - Virtual size: 19KB

.data Size: 1KB - Virtual size: 2KB

.rsrc Size: 77KB - Virtual size: 80KB

.text
Size: 33KB - Virtual size: 32KB

.rdata
Size: 19KB - Virtual size: 19KB

.data
Size: 1KB - Virtual size: 2KB

.rsrc
Size: 77KB - Virtual size: 80KB