b385e22b50d4cf0b0555f2c3d7c4ef184689ff45abb1e66e0cfac9251c1c37b2

Sharing

Copy URL

Twitter E-mail

General

Target

b385e22b50d4cf0b0555f2c3d7c4ef184689ff45abb1e66e0cfac9251c1c37b2
Size

316KB
MD5

0456f5b9ccccc74b859bf555b521bab9
SHA1

64a66ed784f55e6527fcf688b34cbcd69ac3178d
SHA256

b385e22b50d4cf0b0555f2c3d7c4ef184689ff45abb1e66e0cfac9251c1c37b2
SHA512

e9e7bb26f3ff12e3f74db51a84672027a4f851a9c17ed5ad8e82d882aabb759061c3d48a5d7589e7cf442e2795831f93a0756cd91a9d36640c17f0464894287b
SSDEEP

3072:7mRZoJ4s8+Wtzefea5BPVuMKPK9lmSdgNKtcc9QyXbP4JZQsvXJhdkqTwM:7meU4P8MKvS09c9FbPqJhdkqc

Score

N/A

Malware Config

Signatures

Files

b385e22b50d4cf0b0555f2c3d7c4ef184689ff45abb1e66e0cfac9251c1c37b2
.exe windows x86

6b78962a31286a593093774bb1ee14b8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
TranslateMessage
GetDesktopWindow
CharNextA
GetParent
GetDC

gdi32

GetClipBox
CreateFontIndirectA
GetTextMetricsA
CreatePen
RectVisible
CreatePalette
CreateSolidBrush
LineTo
GetPixel
GetObjectA
DeleteObject
SelectPalette
CreateCompatibleDC
RestoreDC
SaveDC
SetStretchBltMode
SetTextAlign
SetMapMode
SetTextColor
PatBlt
GetStockObject
DeleteDC
SelectObject
GetDeviceCaps

kernel32

GetCurrentThreadId
GetCurrentProcess
GetModuleHandleA
lstrcmpA
CopyFileA
GetProcessHeap
DeleteFileA
GetUserDefaultLangID
GetDriveTypeA
SetCurrentDirectoryA
MulDiv
RemoveDirectoryA
GlobalFindAtomA
lstrcmpiW
GetCurrentThread
lstrcmpiA
lstrlenW
IsDebuggerPresent
GetConsoleOutputCP
GetOEMCP
GetThreadLocale
GetModuleHandleW
GetACP
DeleteFileW
GetStartupInfoA
GetCurrentProcessId
QueryPerformanceCounter
GlobalFindAtomW
GetCommandLineW
GetTickCount
lstrlenA
GetCommandLineA
GetVersion
VirtualAlloc
VirtualFree

glu32

gluNurbsCallback

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Wqqil. X
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Agdnfhai
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 83KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

plljyiu
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ismthgx
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jccvimt
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6b78962a31286a593093774bb1ee14b8

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 11KB - Virtual size: 11KB

Wqqil. X Size: 512B - Virtual size: 4KB

.rdata Size: 25KB - Virtual size: 24KB

Agdnfhai Size: 512B - Virtual size: 4KB

.data Size: 101KB - Virtual size: 101KB

.rsrc Size: 83KB - Virtual size: 84KB

plljyiu Size: 31KB - Virtual size: 32KB

ismthgx Size: 31KB - Virtual size: 32KB

jccvimt Size: 31KB - Virtual size: 32KB

.text
Size: 11KB - Virtual size: 11KB

Wqqil. X
Size: 512B - Virtual size: 4KB

.rdata
Size: 25KB - Virtual size: 24KB

Agdnfhai
Size: 512B - Virtual size: 4KB

.data
Size: 101KB - Virtual size: 101KB

.rsrc
Size: 83KB - Virtual size: 84KB

plljyiu
Size: 31KB - Virtual size: 32KB

ismthgx
Size: 31KB - Virtual size: 32KB

jccvimt
Size: 31KB - Virtual size: 32KB