5a8988994b2917cf25223407b470364cdec0f73d18207598ef46e743b516f728

General

Target

5a8988994b2917cf25223407b470364cdec0f73d18207598ef46e743b516f728
Size

577KB
MD5

74deb5eb2f53da7db8d08403709786bb
SHA1

28a291aeea0ddc6f4344ef7280e492d44a587ad4
SHA256

5a8988994b2917cf25223407b470364cdec0f73d18207598ef46e743b516f728
SHA512

fdc03237309a95ce444b8e8e2879f3359e79cec5042cb853c2c8e4c5bb1d5b784265d380223f908b11f4282331dde32ed7ca09ba0c160cd27407f3136aa46927
SSDEEP

12288:CJHDnbXU+pMl2yAmeOBXgKodq9L1eZ7MYDorH9WeRbSkkobt:EjbXnpMlVAmPBXhxQ7bDgtRBt

Score

N/A

Malware Config

Signatures

Files

5a8988994b2917cf25223407b470364cdec0f73d18207598ef46e743b516f728
.exe windows x86

e128d3d9b39a8171792e962e6a26e9f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
LoadLibraryA
GetHandleInformation
GetVersion
GetModuleHandleA
IsValidLocale
GetConsoleCommandHistoryA
RtlFillMemory
FreeLibrary
GetProcAddress
GetSystemTime
GetLocalTime
AssignProcessToJobObject
CreateNamedPipeW
EraseTape
SetCurrentDirectoryA
SetConsoleMaximumWindowSize
GetStartupInfoA

opengl32

glGetTexGeniv
glMapGrid1f
glIndexubv
glPixelMapuiv
glInterleavedArrays
glGetTexLevelParameterfv
wglMakeCurrent
glIndexfv
glVertex4sv
glGetLightiv
wglDeleteContext
glClear
glTexCoord1sv
glPixelZoom
glTexCoord4dv
wglCreateContext
glGetTexGendv
glTexGenfv
glPolygonMode
glColor4d
glGetMaterialiv

shell32

StrCmpNIA

shlwapi

PathCombineW
PathIsFileSpecW
PathRemoveFileSpecW
StrDupA
StrIsIntlEqualA
SHDeleteValueA
SHGetValueW
PathAddBackslashW
UrlEscapeW
GetMenuPosFromID
PathRemoveBlanksA
PathMakePrettyA
StrToIntA
SHQueryInfoKeyW
PathParseIconLocationW
PathIsRelativeW
PathFindFileNameW
PathStripToRootA
SHEnumKeyExA
StrPBrkW

msvcrt

ferror
_gcvt
_loaddll
_fmode
fseek
_dup2
feof
fclose
fread
gets
_strupr
__p__tzname
_eof
printf
fsetpos
fprintf
sprintf
memset
_y0
__p__daylight
_getdrive
_onexit
__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_mbccpy
_winmajor
ftell
_putch
_unlink
__p__timezone
__p__winmajor
strstr
_umask
fwrite
fputc
fopen
fwprintf
tolower
fputs
_unloaddll
_ismbcsymbol
_mbsnbicoll
_getch

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 528KB - Virtual size: 525KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e128d3d9b39a8171792e962e6a26e9f8

Headers

File Characteristics

Imports

kernel32

opengl32

shell32

shlwapi

msvcrt

Sections

.text Size: 40KB - Virtual size: 39KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 528KB - Virtual size: 525KB

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 528KB - Virtual size: 525KB