89e96cdb712394976fb59283ac6da3fd4971a634954c573736a3d8ac10ac44ac

Sharing

Copy URL Twitter E-mail

General

Target

89e96cdb712394976fb59283ac6da3fd4971a634954c573736a3d8ac10ac44ac
Size

190KB
MD5

dc36b65537dc304f69e80c7fa2d3f6b5
SHA1

3148efeeaddbefbca25d786440f0ba25e70d1380
SHA256

89e96cdb712394976fb59283ac6da3fd4971a634954c573736a3d8ac10ac44ac
SHA512

fe22fabda5b57e8462a5f6d4b0fdc5295fa5733e22ef658de29d152260ef339297dc4a3e95dfac63c4bf90189c76d85e2f28588304228d3e6f78552d777d794e
SSDEEP

3072:RDd6Ehki0Wh0oD8u+KhEad+wUlj7it/0rRFX7JFpmdhoZGO6IFu+OrCPbHDuEx4p:Vwaki0WhLD8u7h9sStsrR1XKw6IFZqmC

Score

N/A

Malware Config

Signatures

Files

89e96cdb712394976fb59283ac6da3fd4971a634954c573736a3d8ac10ac44ac
.exe windows x86

43647accf1bc39740b77930c854519ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glRasterPos2fv
glMaterialfv
glGetPolygonStipple
glTexCoord4dv
glLogicOp
glDepthRange
glRasterPos3fv
glEnable
glTexGeniv
glArrayElement
glEvalCoord2fv
glPolygonOffset
glTexGenf
glLoadMatrixf
glVertex3f
glFogf
glIndexMask

kernel32

ConnectNamedPipe
GetCurrentThreadId
GetLastError
GetSystemPowerStatus
VirtualAlloc
WriteConsoleOutputA
DeactivateActCtx
EnumUILanguagesW
GetConsoleTitleW
GetFileType
QueryPerformanceCounter
GetCurrentProcessId
GetExitCodeThread
SetConsoleOutputCP
GetVolumeInformationW
GetTickCount
EnumerateLocalComputerNamesW
AddAtomW
GetVolumePathNameW

certcli

CASetCASecurity
CAEnumCertTypes
CACertTypeRegisterQuery
CACreateCertType
CAOIDGetLdapURL
CACloseCA
CACountCertTypes
CAOIDFreeProperty
CAOIDFreeLdapURL
CAFindCertTypeByName
CAOIDGetProperty
DllInstall
CACertTypeQuery
CAGetDN
CARemoveCACertificateType
CAAddCACertificateType

msvcrt

__argc
?_query_new_mode@@YAHXZ
_putch
_assert
_wtol
_ismbbpunct
putchar
??1bad_typeid@@UAE@XZ
__RTCastToVoid
__crtCompareStringA
_heapadd
__fpecode
_wspawnv
exit
strncat
_beginthread
_stat64

advapi32

SystemFunction032
OpenEncryptedFileRawW
LsaOpenTrustedDomainByName
AreAllAccessesGranted
AccessCheckByTypeResultListAndAuditAlarmByHandleW
RegEnumKeyA
StartServiceCtrlDispatcherA
ConvertStringSidToSidW
SetPrivateObjectSecurity
LookupPrivilegeDisplayNameA
GetFileSecurityA
MD4Final
SystemFunction013
RegisterServiceCtrlHandlerExW
RegQueryValueA

user32

EndDialog

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idat
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43647accf1bc39740b77930c854519ed

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

kernel32

certcli

msvcrt

advapi32

user32

Sections

.text Size: 101KB - Virtual size: 101KB

.idat Size: 57KB - Virtual size: 57KB

.data Size: 28KB - Virtual size: 31KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 101KB - Virtual size: 101KB

.idat
Size: 57KB - Virtual size: 57KB

.data
Size: 28KB - Virtual size: 31KB

.rsrc
Size: 1KB - Virtual size: 1KB