aa71c0130332c96ac7fef66f80377739b1ad911a20dbc99372e289e2c1213b7c

Sharing

Copy URL Twitter E-mail

General

Target

aa71c0130332c96ac7fef66f80377739b1ad911a20dbc99372e289e2c1213b7c
Size

126KB
MD5

9a03258e0a898f0c5c8ad085b5e1d525
SHA1

2cc961d7d726afc18748e28adda82abbbcda67f3
SHA256

aa71c0130332c96ac7fef66f80377739b1ad911a20dbc99372e289e2c1213b7c
SHA512

1bebe6b4cb0497ad7aab11d0c8866e107498268cc2fe2b2e646db620819160046f20185531f1be6813ca652207f02aa313b4545b95d5d2b6081ef3404128ecf3
SSDEEP

3072:UaclusS82fJqMGGHLjSJ//TPkXHuSU9oRVV:U3usSTJqMGC/S1Ao2

Score

N/A

Malware Config

Signatures

Files

aa71c0130332c96ac7fef66f80377739b1ad911a20dbc99372e289e2c1213b7c
.exe windows x86

6de2ff17f7f4053c1966249b7da3a01d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

TranslateCharsetInfo
RestoreDC
CreateBitmap
PatBlt
SetTextColor
StretchBlt
CreateFontIndirectW
SetBkMode
Rectangle
CreateCompatibleDC

kernel32

GetTempPathW
WriteConsoleW
_lclose
DisableThreadLibraryCalls
FindFirstFileW
VirtualFree
lstrlenA
AreFileApisANSI
GetProcAddress
FreeLibrary
GetWindowsDirectoryA
HeapAlloc
GetModuleHandleA
GetCurrentProcess
VirtualProtect
AllocateUserPhysicalPages
OutputDebugStringA
VirtualAlloc
GetStringTypeW
OutputDebugStringA
ExitThread
LoadLibraryW

msvcrt

__CxxFrameHandler
_snprintf
wcschr
wcscpy
__initenv
swprintf
_vsnprintf
swscanf
wcslen
__p__fmode
_adjust_fdiv
_snwprintf
_ftol
_cexit
_controlfp
__winitenv
strncpy
_exit
__dllonexit
__p__commode
_except_handler3
memcpy
_wcmdln
_iob
memset
malloc
wcscat
_wtol
_purecall
_c_exit
isalpha
free
wcscmp

opengl32

glColor4d
glColor3ui
glColor4f
glTexCoord2dv
wglShareLists
glFogfv
glColor4i
glTexCoord2d
glStencilMask
GlmfBeginGlsBlock

user32

BeginPaint
MapWindowPoints
GetProcessWindowStation
SetScrollPos
LoadMenuW
ClientToScreen
DialogBoxParamA
SendMessageW
SetCapture
ReleaseDC
GetParent
LoadCursorW
GetMenuItemCount
SendMessageA
CopyRect
IsWindow
UnregisterClassW
ReleaseCapture
DispatchMessageW
DestroyWindow
CheckDlgButton
ScreenToClient
LoadImageW
ValidateRect
GetCursorPos
RegisterClassA
wsprintfW
LoadCursorA

Exports

Exports

SmqErcntjk
IrbxdgdVnbhcuSsdxEfl
VfwypdHfmakKtykUw

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 78B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6de2ff17f7f4053c1966249b7da3a01d

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

msvcrt

opengl32

user32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 2KB

.data Size: 116KB - Virtual size: 116KB

.reloc Size: 512B - Virtual size: 78B

.rdata Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 2KB

.data
Size: 116KB - Virtual size: 116KB

.reloc
Size: 512B - Virtual size: 78B

.rdata
Size: 3KB - Virtual size: 2KB