0c2a6b21afeec91f205d7f2d05a3bd53302179f57abe535bb7c41343d98e378f

Sharing

Copy URL Twitter E-mail

General

Target

0c2a6b21afeec91f205d7f2d05a3bd53302179f57abe535bb7c41343d98e378f
Size

220KB
MD5

15754f324c2f23c5e20621292972f7f0
SHA1

a895f3999564defa217c621be35950153da84881
SHA256

0c2a6b21afeec91f205d7f2d05a3bd53302179f57abe535bb7c41343d98e378f
SHA512

c56a23e798b363f90941dcb4e693305cb19b78933e2551af45de7ebb13af4ab08e893b97d4bba12b0c7a3341b6f90fc64894fdc0a18be059eef5b99b13c237d9
SSDEEP

6144:Fg545DyKZ7K8dYivaCJtn80kNcMzHs6O0j20:W545DyKZ7K8aQ538BuMzHsMR

Score

N/A

Malware Config

Signatures

Files

0c2a6b21afeec91f205d7f2d05a3bd53302179f57abe535bb7c41343d98e378f
.exe windows x86

93060569c955554cc53f84615ecb905a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterHotKey
DlgDirListComboBoxA
SetFocus
GetTabbedTextExtentW
OpenWindowStationA
SetMenuItemInfoA
DdeNameService
CloseWindowStation
SetSystemCursor
CascadeWindows
BeginPaint
LoadImageA

opengl32

glFlush
glBegin
glVertex3f
glColor3f
glEnd

dbghelp

SymEnumerateSymbols
SymUnloadModule64
StackWalk
SymGetSymFromAddr64
SymGetSymFromAddr
SymFunctionTableAccess64
SymGetModuleInfo

kernel32

TlsFree
CreateFileW
SetStdHandle
WriteConsoleW
CloseHandle
SetEnvironmentVariableA
CompareStringW
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
HeapSize
LoadLibraryW
IsProcessorFeaturePresent
RtlUnwind
LCMapStringW
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetModuleFileNameW
FreeLibrary
BackupRead
ReadConsoleA
GetCommModemStatus
HeapDestroy
InterlockedDecrement
InterlockedIncrement
GetTimeFormatA
GetDateFormatA
GetLastError
HeapReAlloc
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetCommandLineA
HeapSetInformation
GetStartupInfoW
EncodePointer
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DecodePointer
TerminateProcess
GetCurrentProcess
TlsAlloc
TlsGetValue
TlsSetValue
GetModuleHandleW
SetLastError
GetCurrentThreadId
GetProcAddress
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetACP
GetOEMCP
IsValidCodePage
Sleep
GetUserDefaultLCID
GetLocaleInfoW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeW
MultiByteToWideChar
WideCharToMultiByte
GetTimeZoneInformation
HeapCreate
ExitProcess
WriteFile
GetStdHandle

Sections

.text
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 118KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sljxopn
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

93060569c955554cc53f84615ecb905a

Headers

DLL Characteristics

File Characteristics

Imports

user32

opengl32

dbghelp

kernel32

Sections

.text Size: 81KB - Virtual size: 81KB

.rdata Size: 15KB - Virtual size: 15KB

.data Size: 4KB - Virtual size: 19KB

.rsrc Size: 118KB - Virtual size: 119KB

sljxopn Size: - Virtual size: 4KB

.text
Size: 81KB - Virtual size: 81KB

.rdata
Size: 15KB - Virtual size: 15KB

.data
Size: 4KB - Virtual size: 19KB

.rsrc
Size: 118KB - Virtual size: 119KB

sljxopn
Size: - Virtual size: 4KB