98b29be73a807b3dceacc44a5f7f54ebee48e7965adfda3b95ca625f64b974a7

Sharing

Copy URL

Twitter E-mail

General

Target

98b29be73a807b3dceacc44a5f7f54ebee48e7965adfda3b95ca625f64b974a7
Size

821KB
MD5

cb65af542b5d698593cbfe73fca08fd1
SHA1

6053567e5412b79b65c934e7b9b7318bcff0935b
SHA256

98b29be73a807b3dceacc44a5f7f54ebee48e7965adfda3b95ca625f64b974a7
SHA512

153869fae0788e2a6d693323979576dc0731e5c5c0f90b71363058600a760c70a29911834d8a2433ac17cf18114217745d9a83f515f17e880bab0c679b2c47bd
SSDEEP

12288:oWWY10n3ZzXwa1r3RKdK5sfml4He7Y3oEw3DJG3AYevcNGw8e/zl6/fYxaqbJfC7:bWln3Fwa1LR0K5j4T4aA6n8erlAGcuX

Score

N/A

Malware Config

Signatures

Files

98b29be73a807b3dceacc44a5f7f54ebee48e7965adfda3b95ca625f64b974a7
.exe windows x86

29ca394e2cdc94c4187b6536576232df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

wglCopyContext
wglSwapMultipleBuffers
glRectsv
glClearStencil
glPopAttrib
glVertex3s
glVertex4s
glTexCoord1dv
glColor4ubv
wglRealizeLayerPalette
glGetTexEnviv
glVertex4fv
glDrawElements
glEvalMesh1
glColor4fv
glVertex2d
glIsEnabled
glTexCoord1f
glNormal3i
glVertex2iv
glGetMapfv
glLoadMatrixf
glRasterPos3d
glAccum
glReadBuffer
glRectf
glEvalCoord1dv
glRectiv
glPointSize
glEvalCoord2d
wglShareLists

kernel32

ExitProcess
SetProcessPriorityBoost
VirtualAlloc
GetModuleHandleA
RegisterWaitForSingleObject
WriteConsoleInputA
GetConsoleAliasesLengthA
GetConsoleCursorInfo
GetConsoleAliasExesLengthA
EndUpdateResourceA
LoadLibraryA
lstrcmpi
GetProcessWorkingSetSize
EnumResourceTypesA
FileTimeToDosDateTime
BuildCommDCBAndTimeoutsW
FatalAppExitW
VirtualUnlock
FindFirstFileExW
GetFullPathNameW
DefineDosDeviceA
LocalShrink
CallNamedPipeA
CreateProcessInternalW
_lopen
SetCalendarInfoA
CreateJobObjectW
QueryPerformanceCounter
GetNumberOfConsoleInputEvents
UpdateResourceW
GetProcessHeap
FindFirstVolumeMountPointA
GetDevicePowerState
CreateTimerQueue
GetFullPathNameA
GetSystemTimeAsFileTime
GetSystemWow64DirectoryW
WaitForDebugEvent
CreateMutexW
LZDone

msi

MsiInstallMissingComponentA
MsiConfigureProductA
MsiEnumComponentsA
MsiUseFeatureW
MsiNotifySidChangeW
MsiEnableLogA
MsiSetMode
MsiEnumComponentCostsW
MsiVerifyPackageA
MsiPreviewDialogA
MsiGetDatabaseState
MsiDatabaseOpenViewW
MsiProvideComponentFromDescriptorA
MsiOpenProductW
MsiReinstallFeatureFromDescriptorA
MsiSetInternalUI
MsiDatabaseApplyTransformA
MsiGetFeatureUsageA
MsiCloseHandle
MsiProvideAssemblyW
MsiGetProductCodeW
MsiOpenPackageExA
MsiSummaryInfoSetPropertyW
MsiSummaryInfoPersist
MsiSourceListAddSourceW
MsiDatabaseGenerateTransformA
MsiQueryFeatureStateFromDescriptorW

ir41_qcx

CompressBegin
AllocInstanceData
SetScalability
Compress
CompressEnd
FreeInstanceData
CompressFramesInfo
DllMain

Sections

.text
Size: 384KB - Virtual size: 384KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 195KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

29ca394e2cdc94c4187b6536576232df

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

kernel32

msi

ir41_qcx

Sections

.text Size: 384KB - Virtual size: 384KB

.rdata Size: 120KB - Virtual size: 120KB

.data Size: 195KB - Virtual size: 1.5MB

.rsrc Size: 119KB - Virtual size: 118KB

.reloc Size: 1024B - Virtual size: 992B

.text
Size: 384KB - Virtual size: 384KB

.rdata
Size: 120KB - Virtual size: 120KB

.data
Size: 195KB - Virtual size: 1.5MB

.rsrc
Size: 119KB - Virtual size: 118KB

.reloc
Size: 1024B - Virtual size: 992B