21a366baba63c240d62b8c705c8dc49c32beb7ec9ca094a09ca721ad623f238d

Sharing

Copy URL Twitter E-mail

General

Target

21a366baba63c240d62b8c705c8dc49c32beb7ec9ca094a09ca721ad623f238d
Size

51KB
MD5

1c816136183e1f06a86a16de2fa96137
SHA1

3fa9e84cea52fc99cc2bbe7290aed2059e5992b7
SHA256

21a366baba63c240d62b8c705c8dc49c32beb7ec9ca094a09ca721ad623f238d
SHA512

189dac5016543cba94c1c1693691c815e51cd8677b0b336b78a0cd7ada180c9ec1a4e7302869ba3c3921ae6d1bf40dd5ff58ddbe1a5a0dd15de0528638bf5cf9
SSDEEP

768:m/LkSTrSIdcuBH2ZzL8N/9B6AS/ksjac193PfESJSdBriitwMB04kI5rq:mjpHthENsVDpsjaU9ZJ+VtwbIlq

Score

N/A

Malware Config

Signatures

Files

21a366baba63c240d62b8c705c8dc49c32beb7ec9ca094a09ca721ad623f238d
.exe windows x86

75c7d93c3251f1cd279e7ef1b26d984e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA
DeactivateActCtx
UpdateResourceW
TlsGetValue
GetNamedPipeInfo
ReplaceFileW
GetCurrencyFormatA
LoadLibraryW
VerifyConsoleIoHandle
WaitForMultipleObjects
_lcreat
OpenJobObjectA
GetPrivateProfileStructA
UnregisterConsoleIME
RtlCaptureStackBackTrace
GetOverlappedResult
Process32Next
GetShortPathNameA
GetVolumePathNamesForVolumeNameA
FillConsoleOutputAttribute
QueryPerformanceFrequency
lstrcmpi
HeapCreate
VirtualFree
SetCommBreak
RequestWakeupLatency
FlushConsoleInputBuffer
GetProcAddress
GetLogicalDriveStringsA
LocalAlloc
TermsrvAppInstallMode
GetProcessWorkingSetSize
SetLastError
lstrcpyA
IsProcessorFeaturePresent
AddLocalAlternateComputerNameA
GetVersionExW
PeekNamedPipe
GetConsoleFontSize
DeleteTimerQueue
GetFileType
OpenFileMappingW
GetVolumeNameForVolumeMountPointA
HeapWalk
CancelTimerQueueTimer
EnumDateFormatsA
FindFirstVolumeW
CreateEventA
ReadConsoleOutputCharacterA
SetHandleContext
GetTempPathA
DebugSetProcessKillOnExit

glu32

gluDeleteTess
gluBeginTrim
gluErrorString
gluNewQuadric
gluPerspective
gluQuadricDrawStyle
gluOrtho2D
gluBeginCurve
gluBeginSurface
gluTessCallback
gluLoadSamplingMatrices
gluSphere
gluBuild1DMipmaps
gluGetNurbsProperty
gluScaleImage
gluEndCurve
gluDisk
gluEndSurface
gluGetString
gluEndPolygon
gluPartialDisk
gluQuadricTexture
gluGetTessProperty
gluNewTess
gluCylinder
gluTessVertex
gluNurbsSurface

ntdll

_allshr
NtCompareTokens
NtSetBootEntryOrder
ZwStartProfile
RtlGetLongestNtPathLength
vsprintf
RtlxOemStringToUnicodeSize
NtRaiseException
RtlIsValidHandle
RtlNewSecurityGrantedAccess
RtlTraceDatabaseAdd
RtlDnsHostNameToComputerName
RtlAddAuditAccessObjectAce
RtlCreateTimerQueue
RtlClearBits
RtlSetThreadIsCritical
RtlSetIoCompletionCallback
RtlUpcaseUnicodeToMultiByteN
LdrFlushAlternateResourceModules
NtCreateJobObject
NtOpenFile
RtlCreateTimer
_CIcos
ZwQueryQuotaInformationFile
NtEnumerateSystemEnvironmentValuesEx
LdrInitializeThunk
RtlFreeAnsiString
_ftol
RtlInitializeCriticalSectionAndSpinCount
RtlLargeIntegerDivide
LdrSetDllManifestProber
NtSetDefaultLocale
RtlCompareString
_wcsicmp
ZwSetBootOptions
RtlEnumerateGenericTableWithoutSplayingAvl
NtRestoreKey
NtTerminateProcess
RtlApplyRXact
ZwWaitHighEventPair
RtlIpv6StringToAddressW
DbgPrintReturnControlC
RtlInitializeRXact
ZwSignalAndWaitForSingleObject
NtRaiseHardError
NtDeleteFile
RtlGUIDFromString
ZwOpenProcessToken

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

75c7d93c3251f1cd279e7ef1b26d984e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

glu32

ntdll

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 14KB - Virtual size: 14KB