81ce460e997ac205940ee01e52040f0cac0d9298d8f75d8e1ad001f5ecb81fc2

General

Target

81ce460e997ac205940ee01e52040f0cac0d9298d8f75d8e1ad001f5ecb81fc2
Size

580KB
MD5

c045a4d8ea7000830f3152e82d4939f0
SHA1

1eed5ab39fc94f10d1c7f9426c2fdc012f048e2c
SHA256

81ce460e997ac205940ee01e52040f0cac0d9298d8f75d8e1ad001f5ecb81fc2
SHA512

a466f6a37c03fd6ebc0816c3ab691ab4c4693921a5ebbaf6d82daab2c899c4a90b30adcccb093633e16af2a36c616ce2fc77331309492b4fadd1b5367d461248
SSDEEP

12288:x2dcc3zvSUGljdYqvUkKr06SaGLB88B0oOR4xcc:IN6UivvUkKA6SfLBPB0oOi7

Score

N/A

Malware Config

Signatures

Files

81ce460e997ac205940ee01e52040f0cac0d9298d8f75d8e1ad001f5ecb81fc2
.exe windows x86

8052a795d31527bae2a12ca9d9683bd4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidLocale
VirtualAlloc
LoadLibraryA
GetHandleInformation
CreateWaitableTimerA
GetProcAddress
GetLocalTime
GetFileType
PrepareTape
SwitchToFiber
EscapeCommFunction
GetModuleHandleA
GetVersion
GetNumberFormatA
GetConsoleMode
FreeLibrary
GetSystemTime
GetStartupInfoA

opengl32

glLightiv
glRasterPos4d
wglUseFontOutlinesA
glIndexd
glColor4us
glColor3f
wglDeleteContext
glTranslatef
glVertex2d
glVertex3fv
glGetLightiv
wglCreateContext
wglMakeCurrent
glEnableClientState
wglDescribePixelFormat
glTexParameterf
glVertex3dv
glColor4uiv
glGetTexLevelParameterfv
glRecti
glCopyPixels
glTexEnvi
glMap1d
glIndexub
glGetFloatv
glFeedbackBuffer
wglGetCurrentDC

shell32

StrRChrIW
StrRChrW
StrRStrIA

shlwapi

PathCompactPathA
PathSkipRootW
UrlGetLocationW
SHRegWriteUSValueA
StrTrimA
PathIsFileSpecA
SHRegQueryUSValueA
SHOpenRegStreamA
PathIsUNCServerW
SHSetValueA
PathAddBackslashA
PathIsSameRootW
IntlStrEqWorkerA
StrCmpIW

msvcrt

_onexit
_getdllprocaddr
fwrite
_unlink
ferror
fclose
fprintf
memset
ftell
fwprintf
feof
printf
fseek
sprintf
fputs
fopen
fsetpos
fputc
remove
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__dllonexit
_controlfp
_except_handler3
fread
__set_app_type
__p__fmode
__p__commode

Sections

.text
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 532KB - Virtual size: 530KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8052a795d31527bae2a12ca9d9683bd4

Headers

File Characteristics

Imports

kernel32

opengl32

shell32

shlwapi

msvcrt

Sections

.text Size: 40KB - Virtual size: 38KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 532KB - Virtual size: 530KB

.text
Size: 40KB - Virtual size: 38KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 532KB - Virtual size: 530KB