12248e3d3027b5e5d190d8d0a806339e25fa66dea1f6b116a3370fa955925192

Sharing

Copy URL Twitter E-mail

General

Target

12248e3d3027b5e5d190d8d0a806339e25fa66dea1f6b116a3370fa955925192
Size

112KB
MD5

c44487b1bc2c9dd1ca33346b815a38b6
SHA1

b2a71c775de799c7534952836c646c68773ebee7
SHA256

12248e3d3027b5e5d190d8d0a806339e25fa66dea1f6b116a3370fa955925192
SHA512

a610061e3bfdc9b83ab7e6746aa166f659dcb518efd68b556ae0bd9d7487a481f445852c35275477876e16ab0070751e54537b2327751497edfc6ad804b9b717
SSDEEP

1536:La3FTwWYWQ3pmk/Ronplfw1v8MtAIJe2l412wiOnB2XyOOS9N0t:Gbk0k/RoplfkvpJe72wtBoOS9+t

Score

N/A

Malware Config

Signatures

Files

12248e3d3027b5e5d190d8d0a806339e25fa66dea1f6b116a3370fa955925192
.exe windows x86

fb78b6a65fd8e0e0c6d7e644af8ba4b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glVertex3sv
glGetPolygonStipple
glRasterPos3i
glEvalCoord2d
glTexEnvf
glTexImage1D
glIndexsv
glIsTexture
glTexParameterfv
glVertex3dv
glGetMapfv
glGetClipPlane

urlmon

CreateAsyncBindCtx
CreateURLMoniker
GetClassFileOrMime
RegisterMediaTypes
RevokeBindStatusCallback

kernel32

GetSystemDefaultLangID
VirtualQuery
VirtualAlloc
HeapUnlock
ReleaseMutex
VirtualProtectEx
VirtualQueryEx
SetEvent
GetCurrencyFormatA
HeapLock
SetThreadLocale
WideCharToMultiByte
GlobalFlags
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc
LoadLibraryA
InterlockedDecrement
InterlockedIncrement
RaiseException
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

ws2_32

select
bind
gethostbyname
ioctlsocket
ntohs
getsockopt
inet_addr
getpeername
listen
sendto
setsockopt
htonl
recv
send
shutdown

wsnmp32

ord204
ord302
ord106
ord903

cryptui

CryptUIWizImport
CryptUIWizDigitalSign
CryptUIWizExport
CryptUIDlgViewContext

setupapi

SetupDiGetINFClassA
SetupDiChangeState
SetupCopyErrorA
SetupScanFileQueueA
SetupSetDirectoryIdExA
SetupRenameErrorA
SetupDiGetClassDevsW
SetupCommitFileQueueW
SetupIterateCabinetA
SetupFindNextLine
SetupCloseLog
SetupGetLineByIndexA
SetupRemoveFileLogEntryA
SetupSetSourceListA

gpedit

ImportRSoPData

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb78b6a65fd8e0e0c6d7e644af8ba4b5

Headers

File Characteristics

Imports

opengl32

urlmon

kernel32

ws2_32

wsnmp32

cryptui

setupapi

gpedit

Sections

.text Size: 25KB - Virtual size: 24KB

.rdata Size: 14KB - Virtual size: 14KB

.data Size: 17KB - Virtual size: 22KB

.rsrc Size: 54KB - Virtual size: 54KB

.text
Size: 25KB - Virtual size: 24KB

.rdata
Size: 14KB - Virtual size: 14KB

.data
Size: 17KB - Virtual size: 22KB

.rsrc
Size: 54KB - Virtual size: 54KB