e3aaec95917ca2660ede0c0e69729f7fa17a2656b69f877442135a598fdee2f9

Sharing

Copy URL Twitter E-mail

General

Target

e3aaec95917ca2660ede0c0e69729f7fa17a2656b69f877442135a598fdee2f9
Size

110KB
MD5

0ca10e0dc3b9044bc1258979b9669f90
SHA1

ed9602f9a08db9da5f77006e7cb952d63660a5c8
SHA256

e3aaec95917ca2660ede0c0e69729f7fa17a2656b69f877442135a598fdee2f9
SHA512

699d9dd6e6dd50d0985f12368418f6e4238e4f31bc3b8ce5ab9bd1995c1c646e6a5da0f083cdc120f2ee3f68601e12de1189a163a8c487ff200234e8036c7c60
SSDEEP

3072:Sj8Su6GnlFqmqzAXZ9+S0WY769aCny4p1pL77rr:SjFuVlFMA+S0NcnnX

Score

N/A

Malware Config

Signatures

Files

e3aaec95917ca2660ede0c0e69729f7fa17a2656b69f877442135a598fdee2f9
.exe windows x86

e7490b11abcc3ad2350bfc93da63c73d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glRasterPos2iv
glVertex4f
glGetIntegerv
glRasterPos4f
glNormal3b
glDrawElements
glPixelZoom
glColor4i
glPopAttrib
glVertex3dv

ole32

OleFlushClipboard
CoFileTimeToDosDateTime
CoDosDateTimeToFileTime
OleLockRunning
CoIsHandlerConnected
OleCreateLinkToFileEx

advapi32

RegQueryValueA
RegConnectRegistryA
ClearEventLogA
NotifyChangeEventLog
RegSaveKeyA
RegCloseKey
RegQueryInfoKeyA
RegEnumValueA
OpenEventLogA

kernel32

LCMapStringW
IsProcessorFeaturePresent
LoadLibraryW
HeapAlloc
HeapReAlloc
SetEndOfFile
GetProcessHeap
ReadFile
CreateFileW
EnterCriticalSection
VerLanguageNameA
WritePrivateProfileStructA
GetModuleHandleA
GetProcAddress
VirtualAllocEx
Sleep
GetModuleHandleW
MultiByteToWideChar
WriteConsoleW
SetStdHandle
CreateFileA
CloseHandle
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
ExitProcess
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
GetLastError
HeapFree
GetStringTypeW
GetFileAttributesA
GetCommandLineA
HeapSetInformation
GetStartupInfoW
HeapSize
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
TerminateProcess
GetCurrentProcess
RtlUnwind
SetFilePointer
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
FlushFileBuffers
HeapCreate
GetCPInfo
InterlockedIncrement

version

GetFileVersionInfoA
VerInstallFileA
VerQueryValueA
GetFileVersionInfoSizeA
VerFindFileA

ws2_32

gethostname
getprotobynumber
ntohl
gethostbyaddr

wsnmp32

ord301
ord905
ord101
ord401
ord206
ord103
ord205
ord999
ord402
ord605
ord106
ord501
ord201

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hgbr
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e7490b11abcc3ad2350bfc93da63c73d

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

ole32

advapi32

kernel32

version

ws2_32

wsnmp32

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 14KB - Virtual size: 21KB

.hgbr Size: 27KB - Virtual size: 27KB

.rsrc Size: 512B - Virtual size: 480B

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 14KB - Virtual size: 21KB

.hgbr
Size: 27KB - Virtual size: 27KB

.rsrc
Size: 512B - Virtual size: 480B