b56b883a1ace3e9649c97b869baebdf9a012da91c7470ffcdd0b0108397035b9

General

Target

b56b883a1ace3e9649c97b869baebdf9a012da91c7470ffcdd0b0108397035b9
Size

113KB
MD5

9a5f5de2ae257be42d82b3dd346ed5ad
SHA1

3a68a8e6f8ebf7173d8ed2a229bcf0ee6f968f63
SHA256

b56b883a1ace3e9649c97b869baebdf9a012da91c7470ffcdd0b0108397035b9
SHA512

d658fae8d78973e6b031dda1e0f974922337cc5d60b1b24a7e6a9520dcd919418f44a51816593f1fa364d329e71ecc4e719a2fba5795ff74a1fae221b8182c48
SSDEEP

1536:lRc5EDe7V/Wemc/c9oUzUj0J8qJt/6i78xrnPdKgvlaCjl/I+Kr3:lRc5gAVEcchhJ8qJtCi7KU4rjlg+K

Score

N/A

Malware Config

Signatures

Files

b56b883a1ace3e9649c97b869baebdf9a012da91c7470ffcdd0b0108397035b9
.exe windows x86

04ea588ca794508089090ccf31d74f10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TranslateMessage
GetParent
CharNextA
GetSystemMetrics
GetDesktopWindow

gdi32

SaveDC
PatBlt
GetStockObject
GetPixel
CreateSolidBrush
RectVisible
SetTextAlign
DeleteObject
LineTo
CreatePalette
GetDeviceCaps
DeleteDC
CreateCompatibleDC
SelectObject
CreateFontIndirectA
GetObjectA
GetTextMetricsA
SetMapMode
SetStretchBltMode
SetTextColor
SelectPalette
GetClipBox
RestoreDC
CreatePen
SetPixel

kernel32

GetCommandLineA
CopyFileA
DeleteFileW
lstrlenA
GetCurrentProcess
GetOEMCP
lstrcmpiA
IsDebuggerPresent
GetCommandLineW
GetCurrentThreadId
GetWindowsDirectoryA
GetCurrentThread
lstrlenW
GetModuleHandleW
GlobalFindAtomW
lstrcmpA
DeleteFileA
MulDiv
GlobalFindAtomA
GetModuleHandleA
lstrcmpiW
QueryPerformanceCounter
GetACP
GetProcessHeap
GetThreadLocale
GetStartupInfoA
GetVersion
VirtualAlloc
VirtualFree
GetTickCount
GetDriveTypeA
SetCurrentDirectoryA
GetCurrentProcessId
RemoveDirectoryW
RemoveDirectoryA

glu32

gluQuadricCallback

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

04ea588ca794508089090ccf31d74f10

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 11KB - Virtual size: 49KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 11KB - Virtual size: 49KB