9b1b8e8c7e1f82089f165445e1e0af971e30dc01940be773bba41e46e3c90868

Sharing

Copy URL Twitter E-mail

General

Target

9b1b8e8c7e1f82089f165445e1e0af971e30dc01940be773bba41e46e3c90868
Size

126KB
MD5

4bb24d5f27bd78f1551d6af6f97eab9e
SHA1

5d8cde213a6979f062d04025be40ff9df9b895d0
SHA256

9b1b8e8c7e1f82089f165445e1e0af971e30dc01940be773bba41e46e3c90868
SHA512

684c62a4181a20b9c0d8186ad45d36212f33dca3ecd1ffffbbe4dc91516fc85a02490cf3a2e17931180950e27d7aa6d2dec2fdb0a4723923b77803459e9f5082
SSDEEP

3072:yA0UgoZYyv8VY2YtR8JUeIwZ2uDjXoij0adSQ3/f:yYgklv8VYAJUeIwYuDjYmbdT3/f

Score

N/A

Malware Config

Signatures

Files

9b1b8e8c7e1f82089f165445e1e0af971e30dc01940be773bba41e46e3c90868
.exe windows x86

17c9debd855a9e772790b8c91b5f7bc4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

TranslateCharsetInfo
RestoreDC
CreateBitmap
PatBlt
SetTextColor
StretchBlt
CreateFontIndirectW
SetBkMode
Rectangle
CreateCompatibleDC

kernel32

GetTempPathW
WriteConsoleW
_lclose
DisableThreadLibraryCalls
FindFirstFileW
VirtualFree
lstrlenA
AllocConsole
GetProcAddress
FreeLibrary
GetWindowsDirectoryA
HeapAlloc
GetModuleHandleA
GetCurrentProcess
VirtualProtect
AddVectoredExceptionHandler
OutputDebugStringA
VirtualAlloc
GetStringTypeW
OutputDebugStringA
ExitThread
LoadLibraryW

msvcrt

__CxxFrameHandler
isalpha
wcschr
wcscpy
__initenv
swprintf
_vsnprintf
swscanf
wcslen
__p__fmode
_adjust_fdiv
_snwprintf
_ftol
_cexit
_controlfp
__winitenv
strncpy
_exit
__dllonexit
__p__commode
_except_handler3
memcpy
_wcmdln
_iob
memset
malloc
wcscat
_wtol
_purecall
_c_exit
_snprintf
free
wcscmp

opengl32

glColor4d
glColor3ui
glColor4f
glTexCoord2dv
wglShareLists
glFogfv
glColor4i
glTexCoord2d
glStencilMask
GlmfBeginGlsBlock

user32

BeginPaint
MapWindowPoints
GetProcessWindowStation
SetScrollPos
LoadMenuW
ClientToScreen
DialogBoxParamA
SendMessageW
SetCapture
ReleaseDC
GetParent
LoadCursorW
GetMenuItemCount
SendMessageA
CopyRect
IsWindow
UnregisterClassW
ReleaseCapture
DispatchMessageW
DestroyWindow
CheckDlgButton
ScreenToClient
LoadImageW
ValidateRect
GetCursorPos
RegisterClassA
wsprintfW
LoadCursorA

Exports

Exports

SmqErcntjk
IrbxdgdVnbhcuSsdxEfl
VfwypdHfmakKtykUw

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 78B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

17c9debd855a9e772790b8c91b5f7bc4

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

msvcrt

opengl32

user32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 78B

.data Size: 116KB - Virtual size: 116KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 78B

.data
Size: 116KB - Virtual size: 116KB

.rsrc
Size: 3KB - Virtual size: 2KB