a33490ece038b1c1e154775de8323a58dabaf5ced2df409e2e15d4cd60099e51

General

Target

a33490ece038b1c1e154775de8323a58dabaf5ced2df409e2e15d4cd60099e51
Size

166KB
MD5

801776893b363a593c7246aac921b1e9
SHA1

688f5347443ccb4fd52425576e4cbebb856bf9c0
SHA256

a33490ece038b1c1e154775de8323a58dabaf5ced2df409e2e15d4cd60099e51
SHA512

ab42be11347ad2abb632bd2184241a55bbe1de5658865f204833d3d3a4b3b61dbbfce354b2510c0080d5e04ab3b6b108f62365af2441b9fa6c5d6e611fa5229e
SSDEEP

3072:6A6aQA5dXOzJieE9p2M2XRhyPZuPTvNu2+nFnoQAFB:6A6aQ2e2sPTNl

Score

N/A

Malware Config

Signatures

Files

a33490ece038b1c1e154775de8323a58dabaf5ced2df409e2e15d4cd60099e51
.exe windows x86

945c9428552db1f8651f13fdd5fbc13c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryA
GetModuleHandleW
GetModuleHandleA
GetCurrentThreadId
GetCurrentProcessId
GetOEMCP
RemoveDirectoryA
GetDriveTypeA
IsDebuggerPresent
GetCommandLineW
GetThreadLocale
lstrlenA
lstrlenW
SetCurrentDirectoryA
GetProcessHeap
GlobalFindAtomW
lstrcmpiA
GetCurrentProcess
DeleteFileW
DeleteFileA
GetStartupInfoA
GetTickCount
lstrcmpA
MulDiv
CopyFileA
GlobalFindAtomA
GetUserDefaultLangID
GetVersion
GetACP
GetCurrentThread
GetConsoleOutputCP
GetCommandLineA
QueryPerformanceCounter
VirtualAlloc
VirtualFree

gdi32

GetDeviceCaps
SetTextAlign
CreateCompatibleDC
GetClipBox
SetStretchBltMode
SelectPalette
SetMapMode
RectVisible
GetTextMetricsA
CreateSolidBrush
RestoreDC
PatBlt
CreatePalette
CreatePen
LineTo
GetStockObject
SelectObject
DeleteObject
SaveDC
DeleteDC
SetTextColor
GetPixel
CreateFontIndirectA
GetObjectA

user32

GetSystemMetrics
CharNextA
TranslateMessage
GetParent
GetDC
GetDesktopWindow

glu32

gluNurbsCallback

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Myngoqgi
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Fnebntji
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

945c9428552db1f8651f13fdd5fbc13c

Headers

File Characteristics

Imports

kernel32

gdi32

user32

glu32

Sections

.text Size: 10KB - Virtual size: 10KB

Myngoqgi Size: 512B - Virtual size: 4KB

.rdata Size: 24KB - Virtual size: 24KB

Fnebntji Size: 512B - Virtual size: 4KB

.data Size: 101KB - Virtual size: 100KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 10KB - Virtual size: 10KB

Myngoqgi
Size: 512B - Virtual size: 4KB

.rdata
Size: 24KB - Virtual size: 24KB

Fnebntji
Size: 512B - Virtual size: 4KB

.data
Size: 101KB - Virtual size: 100KB

.rsrc
Size: 28KB - Virtual size: 27KB