a49da6262e97d3295538d830511e2d4a03f561306c7c21ad18dc8f9d7383be0e

Sharing

Copy URL Twitter E-mail

General

Target

a49da6262e97d3295538d830511e2d4a03f561306c7c21ad18dc8f9d7383be0e
Size

1.7MB
MD5

2b4844d8010db71222ab0cd011aed91b
SHA1

8ec942b1327a7bdc3da141edec1fca1245e94aba
SHA256

a49da6262e97d3295538d830511e2d4a03f561306c7c21ad18dc8f9d7383be0e
SHA512

0291b2c5505495a2f53f12692c7f2eb6b5d2926ccc1a936449a037a64be6d9e1a8ee698f369fcd35c3ead8e448e59134985b24d7ea16fc618299e11b1a08bb45
SSDEEP

49152:ZK11111Z7CQ/0dSgqHsR90QwawbdWILF/JFANwUogYDMX7:ZK11111Z7CQMdDqHsR90QwawbdWa1J4P

Score

N/A

Malware Config

Signatures

Files

a49da6262e97d3295538d830511e2d4a03f561306c7c21ad18dc8f9d7383be0e
.exe windows x86

74049a6339c176ea9ed425d1feb04372

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
TlsGetValue
CreateEventA
VirtualFree
CreateFileW
HeapCreate
GetEnvironmentVariableA
CreateEventW
LocalFree
FreeLibrary
GetFileAttributesA
HeapReAlloc
GetSystemTimeAsFileTime
FindFirstFileA
SetUnhandledExceptionFilter
InterlockedExchange
FormatMessageA
ReadFile
DeleteCriticalSection
lstrcmpA
GetStringTypeA
MapViewOfFile
CompareStringA
RaiseException
GetProcessHeap
InterlockedCompareExchange
CloseHandle
GetCommandLineA
SetHandleCount
MultiByteToWideChar
UnhandledExceptionFilter
GetCommandLineW
LockResource
LocalAlloc
GetEnvironmentStrings
GetCurrentProcess
GetModuleFileNameA
GetFileAttributesW
GetVersionExA
GetEnvironmentStringsW
GlobalUnlock
ExitProcess
HeapDestroy
QueryPerformanceCounter
GetOEMCP
GetConsoleCP
GetModuleFileNameW
lstrlenA
LoadResource
lstrlenW
FindClose
HeapFree
GetFileType
VirtualAlloc
VirtualProtect
GetProcAddress
LoadLibraryA
GetPriorityClass
GetThreadTimes
GetExitCodeThread
GetProcessVersion
GetCurrentThread
GetStartupInfoA
GetModuleHandleA
TerminateProcess
IsDebuggerPresent
GetModuleHandleW
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapSize
WriteFile
GetStdHandle
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetTickCount
GetCurrentProcessId
GetCPInfo
GetACP
IsValidCodePage
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
RtlUnwind
LCMapStringA
LCMapStringW
GetStringTypeW
GetLocaleInfoA
SetEndOfFile
HeapAlloc
GetLastError
LeaveCriticalSection

user32

CallWindowProcA
CreateWindowExA
RegisterClassA
GetDlgItem
GetClassWord
GetMessageA
TranslateMessage
SetFocus
GetSystemMetrics
DispatchMessageA
EndPaint
PostMessageA
GetSysColor
SetWindowTextA
GetWindowLongA

advapi32

RegLoadKeyA
RegQueryValueA
RegCloseKey

opengl32

glMapGrid1f
glRasterPos2i
glColor4bv
glRasterPos3sv
glRasterPos4f
glRasterPos2iv
glNormal3i
glColor4d
glColor4s
glRasterPos4i
glRasterPos2sv
glNormal3f
glColor3us
glIndexubv
glColor4iv
glEvalCoord1f

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

74049a6339c176ea9ed425d1feb04372

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

opengl32

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 29KB - Virtual size: 29KB

.data Size: 25KB - Virtual size: 28KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 29KB - Virtual size: 29KB

.data
Size: 25KB - Virtual size: 28KB