a768ba76ecba335c7541d4c8c67c11b52b51b67c3eba34eb91aee287b803d761

Sharing

Copy URL Twitter E-mail

General

Target

a768ba76ecba335c7541d4c8c67c11b52b51b67c3eba34eb91aee287b803d761
Size

80KB
MD5

a403c9f673df15fca8f2a18a963f73a2
SHA1

eac9d52b8bc2249953734508c00f0d92ea8f1b80
SHA256

a768ba76ecba335c7541d4c8c67c11b52b51b67c3eba34eb91aee287b803d761
SHA512

6665bf3c7d075107c94b4e980a29bb02d205f125ec5c994bc68eb2d6c020579a9a740e33cee4a73c2a31321fd7a930762288f8d74e6ede2d16f670820a03dacd
SSDEEP

1536:Bi8X2A66Webnml05JC1SZ4aRauPhzxzLNm2WpSEtK4:BiU35n5JjaKaK

Score

N/A

Malware Config

Signatures

Files

a768ba76ecba335c7541d4c8c67c11b52b51b67c3eba34eb91aee287b803d761
.exe windows x86

1ca1d57d0bcddb7d8b1d3c55b7bab314

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

glu32

gluOrtho2D
gluErrorString
gluGetString
gluNewNurbsRenderer
gluNurbsProperty
gluNewQuadric
gluEndCurve
gluPerspective
gluTessEndContour
gluBeginCurve
gluTessCallback
gluPickMatrix
gluPwlCurve
gluNurbsSurface

user32

GetDlgItemTextA
AnyPopup
GetDialogBaseUnits
SetWindowPlacement
MessageBoxA
GetWindowTextA
ShowWindow
DialogBoxIndirectParamA
IsDialogMessageA
IsZoomed
ArrangeIconicWindows

advapi32

ReadEventLogA
RegQueryValueExA
AdjustTokenGroups
PrivilegeCheck
RegNotifyChangeKeyValue
RegOverridePredefKey
GetOldestEventLogRecord
OpenThreadToken
RegLoadKeyA
AccessCheck
RegQueryMultipleValuesA
RegRestoreKeyA

urlmon

MkParseDisplayNameEx
RevokeFormatEnumerator
IsAsyncMoniker
IsValidURL

kernel32

GetStartupInfoA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileSectionA
GetModuleHandleA
GetProcAddress
VirtualAlloc
LoadLibraryA
Sleep

winspool.drv

GetPrinterW
EnumPrintersW
AddPrinterDriverExW
DeletePrinterConnectionA
EnumJobsW
EnumPrintProcessorsW

netapi32

NetGetDCName
NetFileEnum
NetConfigGetAll
NetFileClose
NetAuditWrite

activeds

ord7
ord14
ord9
ord17
ord15
ord8

msvfw32

DrawDibProfileDisplay
ICLocate
ICImageCompress
ICImageDecompress
DrawDibChangePalette
DrawDibStop
GetOpenFileNamePreviewW
DrawDibDraw

avifil32

AVISaveOptionsFree
AVIFileOpenW
AVIStreamBeginStreaming
AVIStreamGetFrameClose
AVIFileInfoW
AVIFileAddRef

avicap32

capCreateCaptureWindowA

uxtheme

GetThemeRect
GetThemeIntList
OpenThemeData
SetThemeAppProperties
GetThemePosition
GetThemeSysColorBrush
ord47
GetThemeEnumValue
DrawThemeIcon
GetThemeString
GetThemeSysBool
DrawThemeEdge

msvcrt

__setusermatherr
_controlfp
_except_handler3
__set_app_type
__p__fmode
exit
_acmdln
__getmainargs
_XcptFilter
_exit
__p__commode
_adjust_fdiv
_initterm

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1ca1d57d0bcddb7d8b1d3c55b7bab314

Headers

File Characteristics

Imports

glu32

user32

advapi32

urlmon

kernel32

winspool.drv

netapi32

activeds

msvfw32

avifil32

avicap32

uxtheme

msvcrt

Sections

.text Size: 56KB - Virtual size: 53KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 23KB

.tls Size: 4KB - Virtual size: 24B

.rsrc Size: 8KB - Virtual size: 5KB

.text
Size: 56KB - Virtual size: 53KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 23KB

.tls
Size: 4KB - Virtual size: 24B

.rsrc
Size: 8KB - Virtual size: 5KB