6320a1b71a0f14e1b4a2c566d73716af36a6416bb759fc997c887a74801c46b3

Sharing

Copy URL Twitter E-mail

General

Target

6320a1b71a0f14e1b4a2c566d73716af36a6416bb759fc997c887a74801c46b3
Size

827KB
MD5

76d52e33ec2d4790d075419508746f17
SHA1

fa1c3765d5eb9e8507d2d43efc7e757c6ea4a878
SHA256

6320a1b71a0f14e1b4a2c566d73716af36a6416bb759fc997c887a74801c46b3
SHA512

f65888250120d060f95060e87914e6c6370bfeae9c56f720a1fc1ae6368e73dc7e70df62b3c75c85d612129753e1b384f5c490da4624b58dc42ce444976c8116
SSDEEP

12288:cb4k5H3dl4iY+DVMOvBbxdP9G/GNWEwkKx8+e8pdKqg4ctGSHxJM/Ju5zX:cbTH4SD3BbxdP9G/GNe62pdKYiHxJXZ

Score

N/A

Malware Config

Signatures

Files

6320a1b71a0f14e1b4a2c566d73716af36a6416bb759fc997c887a74801c46b3
.exe windows x86

b94c79060294c8e0f127480825c5976f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

crtdll

strncpy
_mbsnccnt
qsort
__doserrno
_CIexp
_strset
atan
freopen
strcat
_access
_mbsnbcpy
_fileinfo_dll
_expand
_strtime
_mbctohira
_memccpy
swprintf
_iob
_mbscpy
_strrev
printf
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
_winminor_dll
__mb_cur_max_dll
_pclose
strlen
gmtime

opengl32

glRasterPos2iv
glEvalCoord2d
wglGetCurrentContext
glVertex3s
glTexGenfv
glColor4ui
glDrawArrays
glVertex2f
glRasterPos4sv
glEvalCoord2fv
glGetMapdv
glColorMask
glTexCoord4iv
glClearColor
glLoadMatrixd
glGetTexLevelParameterfv
glClearAccum
glPixelMapfv
glGetError
glPopClientAttrib
glRasterPos4i
glVertex3iv

mpr

MultinetGetConnectionPerformanceW
WNetGetProviderNameA
WNetPropertyDialogW
WNetFormatNetworkNameA
WNetGetConnectionW
WNetGetDirectoryTypeW
MultinetGetErrorTextW
WNetConnectionDialog2
WNetGetUserW
WNetGetUserA
WNetSupportGlobalEnum
WNetCancelConnectionW
WNetSetConnectionA
WNetCancelConnection2A
I_MprSaveConn
WNetAddConnection3W
WNetCancelConnectionA
WNetGetConnectionA

rtm

RtmGetFirstRoute
MgmGetFirstMfe
RtmReleaseDests
RtmCreateNextHopEnum
RtmBlockSetRouteEnable
InsertIntoTable
RtmGetRoutePointer
RtmUpdateAndUnlockRoute
RtmCreateRouteEnum
RtmCreateEnumerationHandle
RtmReferenceHandles
RtmRegisterClient
RtmWriteAddressFamilyConfig
MgmGetNextMfeStats
RtmLockDestination
RtmAddNextHop
RtmGetLessSpecificDestination
RtmCloseEnumerationHandle
SearchInTable
RtmDereferenceHandles
RtmGetNextRoute
RtmCreateRouteList
MgmDeleteGroupMembershipEntry
MgmGetMfe
MgmGetMfeStats
RtmReleaseChangedDests
RtmDeleteRouteToDest
RtmWriteInstanceConfig
CreateTable
RtmReleaseEntities

mtxclu

MtxCluGetDTCStatusW
MtxCluGetDTCVirtualServerNameW
Startup
MtxCluIsClusterPresentExW
MtxCluSetSecurityRegValue
MtxCluIsNetworkNameInLocalClusterW
MtxCluIsClusterPresent
MtxCluBringOnlineDTCW
MtxCluTakeOfflineDTCW

kernel32

CompareStringA
OpenJobObjectA
GetPrivateProfileStringA
GetTickCount
GetUserDefaultLCID
ReleaseSemaphore
_lopen
GetFileTime
LoadLibraryW
SetFileTime
SetLastError
VirtualFreeEx
GetTempPathA
ReadConsoleInputA
TzSpecificLocalTimeToSystemTime
ReadFileScatter

ntdll

RtlQueueWorkItem
NtOpenThread
RtlGetFullPathName_U
ceil
NtSetThreadExecutionState
ZwAlertThread
RtlGetElementGenericTableAvl
NtCreateFile
NtSetDefaultHardErrorPort
ZwCreateKeyedEvent
RtlEnlargedIntegerMultiply
ZwTerminateProcess
_i64toa
NtSuspendThread

Sections

.text
Size: 375KB - Virtual size: 374KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 165KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b94c79060294c8e0f127480825c5976f

Headers

DLL Characteristics

File Characteristics

Imports

crtdll

opengl32

mpr

rtm

mtxclu

kernel32

ntdll

Sections

.text Size: 375KB - Virtual size: 374KB

.rdata Size: 132KB - Virtual size: 132KB

.data Size: 165KB - Virtual size: 1.5MB

.rsrc Size: 152KB - Virtual size: 152KB

.reloc Size: 1024B - Virtual size: 920B

.text
Size: 375KB - Virtual size: 374KB

.rdata
Size: 132KB - Virtual size: 132KB

.data
Size: 165KB - Virtual size: 1.5MB

.rsrc
Size: 152KB - Virtual size: 152KB

.reloc
Size: 1024B - Virtual size: 920B