8e20c4ba295fad1ed0cac063dc9539efb1971f1096f3cc9845ff5a6550a07c0d

Sharing

Copy URL

Twitter E-mail

General

Target

8e20c4ba295fad1ed0cac063dc9539efb1971f1096f3cc9845ff5a6550a07c0d
Size

81KB
MD5

8fe80863be8b3be9b49db29fec1969d1
SHA1

8c1c926290af8054e56b8b161e8d78adca6b3f8a
SHA256

8e20c4ba295fad1ed0cac063dc9539efb1971f1096f3cc9845ff5a6550a07c0d
SHA512

a2fc316c04f32ca4afec4aa1079ef5850ff2f35d8660d172187baae4b3eef6e36fcd136d1bea14354536f179095629c08d840fbbb37971bdd8a320d6844fde1c
SSDEEP

1536:Y1ehiNYXWXcS8uxKCF48hHKfPzIMXWCjE86ZCNphLhzca1Owrsn:Y0hiNYXWXcS8uxKCphqn0MmCtiOhAwIn

Score

N/A

Malware Config

Signatures

Files

8e20c4ba295fad1ed0cac063dc9539efb1971f1096f3cc9845ff5a6550a07c0d
.exe windows x86

1c12092bab336f106c1010feef4eced1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetSystemTime
CompareStringW
GetModuleFileNameA
GetStdHandle
_lclose
GetFileSize
FormatMessageW
GlobalUnlock
CreatePipe
LoadLibraryA
GetLocaleInfoW
VirtualAlloc
GetTempPathW
GetVolumeNameForVolumeMountPointW
InterlockedDecrement
GetNumberFormatW
GetModuleHandleW
EnterCriticalSection
FormatMessageA
GetLastError
ExitProcess
RtlUnwind
LCMapStringA
FreeEnvironmentStringsW
GetCommandLineW
DeviceIoControl
GetVersionExW
GetModuleHandleA
SetEvent
FindResourceW
OutputDebugStringA
CreateThread
LeaveCriticalSection
FileTimeToLocalFileTime
GetCurrentThreadId
GetFileAttributesW
TerminateThread
MapViewOfFileEx
DuplicateHandle
GetProcAddress

msvcrt

memcpy
strcpy
__wgetmainargs
fflush
__p__fmode
wcslen
__initenv
__winitenv
toupper
_wtol
wcscmp
strncpy
exit
towupper

user32

FillRect
SendMessageA
RedrawWindow
DrawMenuBar
SetWindowTextW
PtInRect
LoadMenuW
SetScrollPos
GetDlgItemTextA
GetThreadDesktop
CharUpperW
RegisterClassExW
GetClipboardData
IsRectEmpty
ModifyMenuW
LoadIconA
PostMessageA
DrawTextW
SystemParametersInfoW
SetWindowPos
CloseClipboard
LoadStringW
DefWindowProcA
ScreenToClient
SetTimer
IsWindowVisible
DrawIcon
EnableMenuItem
MapWindowPoints
OffsetRect

gdi32

SetTextColor
MoveToEx
GetObjectW
CreateCompatibleDC
DeleteObject
CreatePen
BitBlt
SetMapMode
SelectPalette
GetTextMetricsW
PatBlt
CreatePalette
CreateCompatibleBitmap
GetStockObject
SelectObject
SaveDC

opengl32

glVertex3fv
glMap1f
glRasterPos4dv
glGetBooleanv
glTexCoord4iv
glClearIndex
glPixelTransferi

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nlp0
Size: 1024B - Virtual size: 661B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nlp1
Size: 512B - Virtual size: 22B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nlp2
Size: 1024B - Virtual size: 793B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nlp3
Size: 512B - Virtual size: 69B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c12092bab336f106c1010feef4eced1

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 5KB - Virtual size: 4KB

.nlp0 Size: 1024B - Virtual size: 661B

.nlp1 Size: 512B - Virtual size: 22B

.nlp2 Size: 1024B - Virtual size: 793B

.nlp3 Size: 512B - Virtual size: 69B

.rsrc Size: 65KB - Virtual size: 64KB

.reloc Size: 512B - Virtual size: 64B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 5KB - Virtual size: 4KB

.nlp0
Size: 1024B - Virtual size: 661B

.nlp1
Size: 512B - Virtual size: 22B

.nlp2
Size: 1024B - Virtual size: 793B

.nlp3
Size: 512B - Virtual size: 69B

.rsrc
Size: 65KB - Virtual size: 64KB

.reloc
Size: 512B - Virtual size: 64B