1186af6c2751a33c841b9b35d90d2386d5bac3be275a0b75903a7077da4d02fd

Sharing

Copy URL Twitter E-mail

General

Target

1186af6c2751a33c841b9b35d90d2386d5bac3be275a0b75903a7077da4d02fd
Size

393KB
MD5

7584277eb7426bf59cffb841e1962480
SHA1

c717efc4d7550bc96611522b818ff149fe0f7791
SHA256

1186af6c2751a33c841b9b35d90d2386d5bac3be275a0b75903a7077da4d02fd
SHA512

13e4991c16ede24e0f9f46d4b766a5486a85dd64416a1183627acefbeb726b89ecf3ba8c0a47ae4fd69ae70e7ed93be63d9d582772af14527a98beff2badde61
SSDEEP

12288:XYCfGkM8bQrN8Bx/EpNJoM4R68vaRScno1tA:ohkM8bAKxcrJgluo1tA

Score

N/A

Malware Config

Signatures

Files

1186af6c2751a33c841b9b35d90d2386d5bac3be275a0b75903a7077da4d02fd
.exe windows x86

d7c88f4ac20c9e75fb4460413aa08fca

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateThread
CompareStringW
CreateFileW
WriteConsoleW
HeapSize
FlushFileBuffers
HeapReAlloc
SetStdHandle
GetConsoleMode
GetConsoleCP
SetFilePointer
GetVersionExA
CreateSemaphoreA
LoadLibraryW
WaitForSingleObject
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetTimeZoneInformation
WideCharToMultiByte
MultiByteToWideChar
RtlUnwind
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
OutputDebugStringA
WaitForMultipleObjects
LoadLibraryA
GetProcAddress
GetLastError
GetStringTypeW
ReleaseSemaphore
EnterCriticalSection
GetModuleFileNameW
EnumSystemCodePagesA
HeapCreate
LCMapStringW
Sleep
GetStdHandle
WriteFile
IsProcessorFeaturePresent
GetCurrentThreadId
SetLastError
GetCurrentProcess
HeapAlloc
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
SetEnvironmentVariableA
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapFree
GetTimeFormatA
GetDateFormatA
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
TerminateProcess

user32

LoadCursorA
UpdateWindow
PostMessageA
AppendMenuA
DialogBoxParamA
EnableWindow
GetActiveWindow
ShowWindow
GetSysColor
GetSystemMenu
SetForegroundWindow
LoadStringA
GetParent
LoadIconA
GetAncestor
GetWindowLongA
GetWindowTextW
CreateWindowExA
ReleaseDC
SetClassLongA
EndDialog
SendDlgItemMessageW

winspool.drv

ClosePrinter

gdiplus

GdipCreatePen1
GdipDrawLineI
GdipFree
GdipDeletePen
GdipDeleteGraphics
GdipDrawImageRectI
GdipLoadImageFromFile
GdipDisposeImage
GdipCreateFromHDC
GdipCloneImage
GdipAlloc

opengl32

glClear
glBegin
glVertex3f
glEnd
glNormal3f

Sections

.text
Size: 299KB - Virtual size: 299KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d7c88f4ac20c9e75fb4460413aa08fca

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

winspool.drv

gdiplus

opengl32

Sections

.text Size: 299KB - Virtual size: 299KB

.rdata Size: 74KB - Virtual size: 74KB

.data Size: 6KB - Virtual size: 21KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 299KB - Virtual size: 299KB

.rdata
Size: 74KB - Virtual size: 74KB

.data
Size: 6KB - Virtual size: 21KB

.rsrc
Size: 11KB - Virtual size: 11KB