8b38abb0fde941c52b31553787f86cbd8fe0a8856be0bb3a62c6f3cc8ca8e3f5

Sharing

Copy URL Twitter E-mail

General

Target

8b38abb0fde941c52b31553787f86cbd8fe0a8856be0bb3a62c6f3cc8ca8e3f5
Size

829KB
MD5

27f3309ebbd3a36ea9ddefc4f8b1cab2
SHA1

c00322f22d5c536e9832fad44e1baea6eaa5ca80
SHA256

8b38abb0fde941c52b31553787f86cbd8fe0a8856be0bb3a62c6f3cc8ca8e3f5
SHA512

f54fa961c17985342a7ae0f863dd79d2402855af55d37263da97d474fe7d9b40220f7166ad6c91cb51e2cb982be6706c2a4b420f1b27900cb118f7766e7ed303
SSDEEP

24576:O4V26tjROIFlBXr6s1XXFEFd/g4P14sp+W:O82+OInpbnqBggrp

Score

N/A

Malware Config

Signatures

Files

8b38abb0fde941c52b31553787f86cbd8fe0a8856be0bb3a62c6f3cc8ca8e3f5
.exe windows x86

72032cda414088b55a30b9e7f592cdfe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

ZwCompleteConnectPort
RtlTraceDatabaseUnlock
NtSystemDebugControl
RtlInt64ToUnicodeString
ZwWriteRequestData
ZwSetDebugFilterState
NtOpenThreadTokenEx
RtlUpperChar
_aulldvrm
RtlInitCodePageTable
RtlDeleteResource
ZwQueryTimer
NtQueryTimer
ZwOpenObjectAuditAlarm
NtSetDefaultHardErrorPort
ZwCreateEventPair
ZwAllocateLocallyUniqueId
RtlGetSecurityDescriptorRMControl
RtlCompareMemory
DbgUiRemoteBreakin
RtlUnicodeToCustomCPN

msvcrt

_execlpe
__getmainargs
_wcsupr
__p__commode
_flushall
_lrotl
_acmdln
_wfindfirst64
__set_app_type
_fmode
wctomb
_utime64
exit
atan
isxdigit
_vscprintf
__isascii
wcspbrk
_heapadd
_mbsnbcmp
_isctype
printf

opengl32

glPushMatrix
glTexGendv
glClearColor
glTexEnviv
glRasterPos2fv
glGetLightiv
glPushAttrib
wglRealizeLayerPalette
glIndexub
GlmfCloseMetaFile
glColor4bv
glMaterialfv
glVertex3s
glVertex2s
glPopMatrix
glColor4fv
glPixelZoom
glGetTexLevelParameterfv
glEvalMesh1
glVertex4sv
glRasterPos2s
glMultMatrixf
glMapGrid1d
glLightModeli
glColor4ui
glTexCoord4s
glColor3b
glTexCoord2s

msrating

RatingCustomAddRatingSystem
ClickedOnRAT
RatingCustomSetDefaultBureau
RatingCustomCrackData
ClickedOnPRF
ChangeSupervisorPassword
RatingFreeDetails
RatingCustomDeleteCrackedData
RatingSetupUI
RatingObtainQuery
RatingAddPropertyPages
RatingCustomAddRatingHelper
RatingInit
VerifySupervisorPassword
RatingCustomInit
RatingEnable
RatingObtainCancel
RatingAccessDeniedDialog
RatingCustomSetUserOptions
RatingCustomRemoveRatingHelper
RatingAccessDeniedDialog2

odbc32

ValidateErrorQueue
SQLGetData
SQLGetFunctions
SQLDriverConnectA
SQLErrorW
SQLNativeSqlA
SQLSetCursorName
SQLGetTypeInfoA
SQLGetTypeInfoW
SQLForeignKeysA
SQLBulkOperations
SQLDataSourcesW
SQLGetStmtOption
CursorLibTransact
SearchStatusCode

kernel32

lstrcatA
GlobalUnfix
AreFileApisANSI
WaitForDebugEvent
GetConsoleAliasesLengthW
GetCurrentThread
EnumResourceNamesA
GlobalFlags
GetSystemPowerStatus
SetCommTimeouts
GetModuleHandleW
GetLogicalDriveStringsW
GetFileInformationByHandle
ReadConsoleOutputA
ReadConsoleInputW
BaseInitAppcompatCacheSupport
SetConsoleInputExeNameW
GetLocaleInfoA
SystemTimeToFileTime
SetFileShortNameW
CreateJobObjectA
OpenConsoleW
OpenJobObjectA
SetConsoleTitleW
GlobalSize
GetCommModemStatus
RemoveDirectoryA
GetMailslotInfo
SetStdHandle
LoadLibraryW
lstrlenA
Thread32Next

glu32

gluEndTrim
gluEndSurface
gluScaleImage
gluDeleteNurbsRenderer
gluQuadricOrientation
gluDisk
gluPickMatrix
gluBuild1DMipmaps
gluLoadSamplingMatrices
gluBuild2DMipmaps
gluNurbsCallback
gluTessProperty

user32

PostQuitMessage
DefWindowProcA
RegisterClassA

Sections

.text
Size: 378KB - Virtual size: 378KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 173KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 828B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72032cda414088b55a30b9e7f592cdfe

Headers

DLL Characteristics

File Characteristics

Imports

ntdll

msvcrt

opengl32

msrating

odbc32

kernel32

glu32

user32

Sections

.text Size: 378KB - Virtual size: 378KB

.rdata Size: 138KB - Virtual size: 138KB

.data Size: 173KB - Virtual size: 1.6MB

.rsrc Size: 136KB - Virtual size: 136KB

.reloc Size: 1024B - Virtual size: 828B

.text
Size: 378KB - Virtual size: 378KB

.rdata
Size: 138KB - Virtual size: 138KB

.data
Size: 173KB - Virtual size: 1.6MB

.rsrc
Size: 136KB - Virtual size: 136KB

.reloc
Size: 1024B - Virtual size: 828B