7bd6091d1a6208e0f1671b57d1449a24086dec76f5800c70f97298342f0ee7c8

Sharing

Copy URL Twitter E-mail

General

Target

7bd6091d1a6208e0f1671b57d1449a24086dec76f5800c70f97298342f0ee7c8
Size

166KB
MD5

7d4726a60e514fe9dabff9623f1140c6
SHA1

074fa28612fa45b199f4e1f7f0194ebb90367158
SHA256

7bd6091d1a6208e0f1671b57d1449a24086dec76f5800c70f97298342f0ee7c8
SHA512

b9d5484e1512d433fbc10d7e9168885f44c3c80fdbfa3d46226f3db58822bfa5091fd7be737985add96d407aef52a75fdb3c95230773fb3b6f35a36782c8d2e1
SSDEEP

3072:52FVrsMJXSe/jItnn/NvXFkbcNgTyv4Ko2oVxdWk7qr49vz:MFuWjSVvXmbcNgTyv4TNdWAwu

Score

N/A

Malware Config

Signatures

Files

7bd6091d1a6208e0f1671b57d1449a24086dec76f5800c70f97298342f0ee7c8
.exe windows x86

d5c9f949ee1a00c541600c52cea1d20b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetSystemMetrics
GetDesktopWindow
CharNextA
GetParent
TranslateMessage

kernel32

DeleteFileA
GetUserDefaultLangID
GetVersion
GetWindowsDirectoryA
RemoveDirectoryA
lstrcmpA
lstrlenW
lstrcmpiA
DeleteFileW
VirtualAlloc
GetCommandLineA
GetACP
VirtualFree
GetCurrentThreadId
GetModuleHandleA
GlobalFindAtomW
GetTickCount
lstrcmpiW
GetModuleHandleW
GetStartupInfoA
GetCurrentProcess
GetConsoleOutputCP
GetProcessHeap
GetDriveTypeA
CopyFileA
lstrlenA
QueryPerformanceCounter
GetCommandLineW
MulDiv
SetCurrentDirectoryA
GlobalFindAtomA
GetOEMCP
IsDebuggerPresent
GetCurrentProcessId

gdi32

SelectObject
DeleteObject
LineTo
GetDeviceCaps
SetTextColor
DeleteDC
GetClipBox
SelectPalette
RestoreDC
PatBlt
SetTextAlign
GetTextMetricsA
CreatePalette
SetStretchBltMode
GetStockObject
GetPixel
CreatePen
SaveDC
RectVisible
SetMapMode
CreateFontIndirectA
CreateCompatibleDC
GetObjectA
CreateSolidBrush

glu32

gluNurbsCallback

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Tfdqgahn
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Iwhox, M
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5c9f949ee1a00c541600c52cea1d20b

Headers

File Characteristics

Imports

user32

kernel32

gdi32

glu32

Sections

.text Size: 10KB - Virtual size: 9KB

Tfdqgahn Size: 512B - Virtual size: 4KB

.rdata Size: 25KB - Virtual size: 25KB

Iwhox, M Size: 512B - Virtual size: 4KB

.data Size: 101KB - Virtual size: 100KB

.rsrc Size: 27KB - Virtual size: 27KB

.text
Size: 10KB - Virtual size: 9KB

Tfdqgahn
Size: 512B - Virtual size: 4KB

.rdata
Size: 25KB - Virtual size: 25KB

Iwhox, M
Size: 512B - Virtual size: 4KB

.data
Size: 101KB - Virtual size: 100KB

.rsrc
Size: 27KB - Virtual size: 27KB