c6531084f624a9b18d7a38b8a9c1311674e9a30206410f1735a340e6584927ef

Sharing

Copy URL Twitter E-mail

General

Target

c6531084f624a9b18d7a38b8a9c1311674e9a30206410f1735a340e6584927ef
Size

108KB
MD5

bf01152e48f523f61ffdf9311a6fc612
SHA1

96ee4d42f7fc6c6d9708e1611ca40069ed2f30fd
SHA256

c6531084f624a9b18d7a38b8a9c1311674e9a30206410f1735a340e6584927ef
SHA512

756838354e4dfaf750ccad991c8b57482bac51f1196303e2e1cb572da346600c37b826b1e34d95d3a2c83d518720db45acafb4a650352d9463035212008659e9
SSDEEP

3072:+CAXOx/ZT1If7ClLAXhetgr4H1uNwN48OwLYPkENwhxrjC1qwEB:eexhT1IfcLAReM4N2t5whVmqNB

Score

N/A

Malware Config

Signatures

Files

c6531084f624a9b18d7a38b8a9c1311674e9a30206410f1735a340e6584927ef
.exe windows x64

f153ab9cc3a36ed58ed5d8b032eb5774

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

HeapSize
LCMapStringW
LoadLibraryA
GetProcessHeap
SetEndOfFile
HeapReAlloc
HeapAlloc
GetStringTypeW
CreateFileW
Sleep
VirtualAlloc
GetProcAddress
GetModuleHandleA
ReadFile
VerLanguageNameA
LoadLibraryW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
CreateFileA
CloseHandle
SetStdHandle
MultiByteToWideChar
WriteConsoleW
GetLastError
HeapFree
GetCommandLineA
GetStartupInfoW
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
FlushFileBuffers
RtlUnwindEx
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
EncodePointer
DecodePointer
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
SetFilePointer
HeapSetInformation
GetVersion
HeapCreate
GetModuleHandleW
ExitProcess
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
FlsGetValue
FlsSetValue
FlsFree
SetLastError
GetCurrentThreadId
FlsAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime

opengl32

glColor3b
glClearIndex
glColor3iv
glGenLists
glBindTexture
glMapGrid1d
glVertex3s
glGetTexEnviv
glTexGenfv
glCallList
glColor4dv

glu32

gluEndTrim
gluEndCurve
gluPwlCurve
gluProject
gluBuild1DMipmaps

shlwapi

SHEnumKeyExW
PathIsSameRootW
PathFindNextComponentA
StrPBrkW
SHRegCloseUSKey
StrRChrA

version

VerFindFileA
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerInstallFileA

Sections

.rtvs
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f153ab9cc3a36ed58ed5d8b032eb5774

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

opengl32

glu32

shlwapi

version

Sections

.rtvs Size: 52KB - Virtual size: 52KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 39KB - Virtual size: 230KB

.pdata Size: 2KB - Virtual size: 2KB

.rtvs
Size: 52KB - Virtual size: 52KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 39KB - Virtual size: 230KB

.pdata
Size: 2KB - Virtual size: 2KB