d9f598d146b20dcd5c1073dafaecd5bc03022f903bfab7a0e25647095cbc117b

Sharing

Copy URL Twitter E-mail

General

Target

d9f598d146b20dcd5c1073dafaecd5bc03022f903bfab7a0e25647095cbc117b
Size

86KB
MD5

e7cb920d474aefa5c4406793700e9ef7
SHA1

8ef8c13c1c25b83fdfe187f0b24ba6a843e6cd3a
SHA256

d9f598d146b20dcd5c1073dafaecd5bc03022f903bfab7a0e25647095cbc117b
SHA512

1a48cfe1498a18b3f72eb99f53e4adbbe2931a5a43605af70b3094c3a8d1450acfbf00a69aed22b425b27c0e4e9d3a8ea0248abb28be9e1e2d3c3d0afee09d5c
SSDEEP

1536:LoI2zq2z2rR+32dOJDAbWT+sHJJq2GtXTA6nh3Ptg0huHNDrcAI3N1u:Lgq42m4OJcbWT+sTq2GFkCTutDluNo

Score

N/A

Malware Config

Signatures

Files

d9f598d146b20dcd5c1073dafaecd5bc03022f903bfab7a0e25647095cbc117b
.exe windows x86

44c95edead36d9ccf4e85b5fe667c130

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeSetQualityOfService
ScrollWindowEx
CreateIconFromResource
DdeNameService
BeginPaint
TranslateAcceleratorW
MessageBoxIndirectA
GetWindowModuleFileNameA
EqualRect
PrivateExtractIconsW
BlockInput
DefDlgProcA
CreateDialogIndirectParamA
GetDlgItemTextA

kernel32

CreateNamedPipeW
CreateFileMappingW
GetPrivateProfileSectionW
WriteProcessMemory
RemoveDirectoryA
GetEnvironmentVariableW
EnumSystemLanguageGroupsW
SetConsoleOS2OemFormat
IsBadCodePtr
SetFilePointerEx
VirtualAllocEx
GetConsoleAliasesW
GetCommandLineA
VerLanguageNameW
VirtualAlloc
UpdateResourceW
GetModuleHandleA
OpenEventA
SetVolumeMountPointW

comctl32

DllGetVersion
ImageList_SetFilter
ImageList_GetDragImage
MenuHelp
ImageList_DragEnter
CreatePropertySheetPageW
ImageList_SetImageCount
ImageList_Draw
ImageList_SetBkColor
ImageList_GetFlags
UninitializeFlatSB
FlatSB_SetScrollProp
CreateToolbar
PropertySheetA
DrawStatusTextA

opengl32

glEdgeFlag
glFogiv
glVertex4sv
glPushClientAttrib
glGetPointerv
glPixelTransferi
glTexCoord3fv
glMap1f
glIndexfv
glColor4s
glNormal3s
glVertexPointer
wglGetDefaultProcAddress
glClearAccum
glVertex3s

expsrv

rtR4FromErrVar
__vbaSetSystemError
rtcChangeDrive
TipCreateInstanceProject2
rtcImmediateIf
__vbaAryVarVarg
__vbaExitProc
_CIlog
__vbaAryRecCopy
rtcEnvironVar
__vbaCopyBytes
_CIsqrt
rtcCurrentDirBstr
rtcBstrFromChar
EbGetVBAObject
EbCreateContext

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idat_90
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44c95edead36d9ccf4e85b5fe667c130

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

comctl32

opengl32

expsrv

Sections

.text Size: 42KB - Virtual size: 42KB

.idat_90 Size: 18KB - Virtual size: 18KB

.data Size: 22KB - Virtual size: 49KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 340B

.text
Size: 42KB - Virtual size: 42KB

.idat_90
Size: 18KB - Virtual size: 18KB

.data
Size: 22KB - Virtual size: 49KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 340B