2b2debbf715f7a4fc329efc5590db52d234bda189bfea288495d2459e50650b8

Sharing

Copy URL Twitter E-mail

General

Target

2b2debbf715f7a4fc329efc5590db52d234bda189bfea288495d2459e50650b8
Size

167KB
MD5

2393f33be26a188123ffcc4a5d545be0
SHA1

3172380910c2e9280df1e70a8891fe6728a54761
SHA256

2b2debbf715f7a4fc329efc5590db52d234bda189bfea288495d2459e50650b8
SHA512

8cd1deac1d08b1bbaaf59447d41fc604214a40bbecbca53eeb5be7b0eb8b2f1fa384b55da4a51e64340b5d2d2d9caf8412408a98e94b794f39e14625abcd64e8
SSDEEP

3072:NIbBTZNA6KRc7qHA7DnMXIn7ZS64GlG5If8JN0hQ9enYkbh+YyCwNb1:N4Pdqgp7DrNS0l8vahl7t6b1

Score

N/A

Malware Config

Signatures

Files

2b2debbf715f7a4fc329efc5590db52d234bda189bfea288495d2459e50650b8
.exe windows x86

4690ca6f38c0e2f42963e86fa1795519

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

VirtualProtect
SetTapeParameters
WriteConsoleOutputA
GetPrivateProfileStructA
WriteConsoleInputA
HeapSize
GetConsoleAliasesLengthW
ReleaseMutex
lstrcat
OpenMutexA
MoveFileExW
LocalSize
GetVersionExA
CancelWaitableTimer
ConnectNamedPipe
SetConsoleCtrlHandler
IsValidLanguageGroup
SetFileValidData
HeapSetInformation
ReleaseSemaphore
GetStdHandle
GetThreadPriority
ClearCommError
GetProcessIoCounters
HeapAlloc
FindResourceExA
OpenThread
ClearCommBreak
IsBadCodePtr
HeapSummary
GetDevicePowerState
CreateFileMappingA
BuildCommDCBAndTimeoutsA
SetEvent
FreeEnvironmentStringsA
GetLogicalDriveStringsA
lstrcpy
GetFileSize
GetPrivateProfileSectionNamesA
DuplicateHandle
GetEnvironmentStringsA
HeapFree
GetFileSizeEx
GetFileInformationByHandle
OpenFileMappingA
UpdateResourceA
GetDiskFreeSpaceExA
VirtualAllocEx
GetFileTime
GlobalReAlloc
GetCommTimeouts
RequestWakeupLatency
OpenMutexA
GetThreadPriority
ClearCommBreak
GetFileInformationByHandle
SetHandleCount
IsProcessorFeaturePresent
_lopen
SetupComm
GetAtomNameA
EnumResourceTypesA
MoveFileA
GetSystemDefaultUILanguage
CreateSemaphoreA
OpenWaitableTimerA
CompareStringA
EnumSystemCodePagesA
GetThreadTimes
UpdateResourceA
_lclose
GetLogicalDrives
FileTimeToLocalFileTime
BuildCommDCBAndTimeoutsW
GetDriveTypeA
GetConsoleInputExeNameA
FindFirstVolumeMountPointA
SetConsoleIcon
_lwrite
QueryMemoryResourceNotification
PurgeComm
SetCommBreak
SetThreadContext
GetOEMCP
SetVolumeLabelA
LZSeek
GetExitCodeProcess
GetConsoleCursorMode
ReadConsoleInputA
GetEnvironmentStringsA
GetNumberOfConsoleMouseButtons
GetVolumePathNameA
SetCommState
GetCurrentProcessId
PurgeComm
ReadFileScatter
lstrcatA
lstrcpyn
FlushConsoleInputBuffer
MultiByteToWideChar
PulseEvent
GetVDMCurrentDirectories
SetFileShortNameA
SetConsoleFont
RemoveDirectoryA
TerminateThread
GetVersion
HeapCreate
GetLastError
GetLogicalDrives
GetStringTypeExW
QueryInformationJobObject
GetNumberOfConsoleFonts
GetThreadPriorityBoost
SetComputerNameA
SetTimeZoneInformation
GetBinaryType
GetPriorityClass
LockFileEx
FillConsoleOutputCharacterA
CloseConsoleHandle
LocalUnlock
HeapDestroy
GetTickCount
GetDefaultCommConfigA
GetFullPathNameA
GlobalReAlloc
SetComputerNameExW
ShowConsoleCursor
GetDriveTypeA
SetDllDirectoryA
GetProcessVersion
GetEnvironmentStringsA
IsBadReadPtr

advapi32

EncryptionDisable

user32

GetMenuDefaultItem
UnpackDDElParam
ClientToScreen
LoadImageA
DefFrameProcA
LoadMenuIndirectA
CharLowerA
LoadCursorA
GetDlgItem
ExitWindowsEx
SetWindowLongA
GetAltTabInfo
DrawFocusRect
RemovePropA
GetClientRect
GetMenuItemRect
GetMenuItemInfoA
DefFrameProcA
GetClassLongA
ShowCaret
GetMessageA
EnumDisplaySettingsExW
GetWinStationInfo
LoadKeyboardLayoutEx
DispatchMessageA
LoadImageA
InflateRect
SetDlgItemTextA
TrackPopupMenu
DlgDirListComboBoxA
DlgDirSelectComboBoxExA
PeekMessageA
SetClassLongA
GetWindowRgnBox
ChildWindowFromPointEx
PostThreadMessageA
TabbedTextOutA
AdjustWindowRect
ReplyMessage
RegisterHotKey
UpdatePerUserSystemParameters
CopyAcceleratorTableA
CharLowerBuffW
SetPropA
DrawMenuBar
GetCursorFrameInfo
GetDialogBaseUnits
RegisterLogonProcess
CreateMenu
PrivateExtractIconsA
GetProgmanWindow
EnumChildWindows
RegisterLogonProcess
GetMenuItemCount
GetReasonTitleFromReasonCode
GetAncestor
GetWindowLongA
GetClipboardOwner
CharToOemA
BeginPaint
RegisterMessagePumpHook
GetMonitorInfoA
DefMDIChildProcA
GetUserObjectSecurity
RegisterSystemThread
MessageBeep
ShowStartGlass
EnumClipboardFormats
ExitWindowsEx
CreateWindowExA
AnimateWindow
SetPropA
CheckMenuRadioItem
GetClipboardSequenceNumber
TranslateMessage

opengl32

glLightModelfv

Exports

Exports

BeginScjlcerjbv
Txqqjxwswf
Emmvseedasc
ReadGwfdmggxys
EndAptpgetq
ReadRmcftcca

Sections

CODE
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4690ca6f38c0e2f42963e86fa1795519

Headers

File Characteristics

Imports

kernel32

advapi32

user32

opengl32

Exports

Exports

Sections

CODE Size: 9KB - Virtual size: 9KB

DATA Size: 5KB - Virtual size: 5KB

.reloc Size: 1024B - Virtual size: 612B

.data Size: 9KB - Virtual size: 9KB

.rsrc Size: 140KB - Virtual size: 140KB

.edata Size: 512B - Virtual size: 80B

CODE
Size: 9KB - Virtual size: 9KB

DATA
Size: 5KB - Virtual size: 5KB

.reloc
Size: 1024B - Virtual size: 612B

.data
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 140KB - Virtual size: 140KB

.edata
Size: 512B - Virtual size: 80B