668dd93eb734e238ee56b6ae11485115f634251fdb6018ffe1464ce5eab1ab3c

Sharing

Copy URL Twitter E-mail

General

Target

668dd93eb734e238ee56b6ae11485115f634251fdb6018ffe1464ce5eab1ab3c
Size

1.7MB
MD5

c7c4cdd1c737bea77f8f27f0b959f07c
SHA1

a098449bccd3acb19757a47cee1c1d070cc4e4f1
SHA256

668dd93eb734e238ee56b6ae11485115f634251fdb6018ffe1464ce5eab1ab3c
SHA512

95a4d4ba0f09e257e613ed18cf7163a0ad2274df9caa0aa66728dcef59dd33d4d1f826a2c67d9772521982345a4841ed24ac79a735739e24d7d7485ad6577e81
SSDEEP

12288:as8HTPnPBLtdxVbr8QLd/oYYjy/MH4JyTZZrsvy75NlZI2n6vuzTEzpvx3xWILzC:az7PBhdxVBoYYjykH4JyTZZ4qNRFUL2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
668dd93eb734e238ee56b6ae11485115f634251fdb6018ffe1464ce5eab1ab3c

Files

668dd93eb734e238ee56b6ae11485115f634251fdb6018ffe1464ce5eab1ab3c
.exe windows:6 windows x64

6be73a30fcc3fdc277a5e0aee3a8573a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

cufft64_92

cufftPlan2d
cufftDestroy
cufftExecC2C

shell32

SHFileOperationA

kernel32

SetEndOfFile
RtlPcToFileHeader
GetStringTypeW
EnumSystemLocalesEx
OutputDebugStringA
WaitForSingleObjectEx
GetProcAddress
FreeLibrary
QueryPerformanceFrequency
QueryPerformanceCounter
GetLocalTime
SetEnvironmentVariableA
GetEnvironmentVariableA
VirtualQuery
VirtualAlloc
VirtualFree
VirtualProtect
GetSystemInfo
Sleep
GlobalMemoryStatusEx
LoadLibraryA
GetNativeSystemInfo
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
TryEnterCriticalSection
LeaveCriticalSection
InitializeSRWLock
AcquireSRWLockShared
AcquireSRWLockExclusive
TryAcquireSRWLockShared
TryAcquireSRWLockExclusive
ReleaseSRWLockShared
ReleaseSRWLockExclusive
GetCurrentProcessId
WaitForSingleObject
GetCurrentThreadId
CreateSemaphoreA
CloseHandle
ReleaseSemaphore
SwitchToThread
CreateEventA
WaitForMultipleObjects
ResetEvent
SetEvent
GetLastError
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetFileAttributesExA
LockFileEx
UnlockFileEx
GetCurrentDirectoryA
GetModuleFileNameA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
GetComputerNameA
SetThreadAffinityMask
GetProcessAffinityMask
GetCurrentProcess
GetCurrentThread
GetModuleHandleA
FreeLibraryAndExitThread
GetModuleHandleExA
HeapCreate
LocalAlloc
GetSystemDirectoryW
GetFileAttributesW
CreateFileW
LocalFree
lstrcmpA
SetLastError
GetModuleHandleW
LoadLibraryExW
GetFullPathNameW
VerifyVersionInfoW
VerSetConditionMask
OutputDebugStringW
CreateProcessW
CreateProcessA
HeapQueryInformation
FlushFileBuffers
SetFilePointerEx
IsValidLocaleName
LCMapStringEx
GetUserDefaultLocaleName
GetLocaleInfoEx
CompareStringEx
GetDateFormatEx
GetTimeFormatEx
SetFilePointer
GetConsoleCP
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
SetConsoleCtrlHandler
TerminateProcess
EncodePointer
DecodePointer
GetCommandLineA
ExitProcess
GetModuleHandleExW
AreFileApisANSI
MultiByteToWideChar
SetStdHandle
GetFileType
InitializeCriticalSectionAndSpinCount
ReadFile
CreateThread
ExitThread
HeapSize
HeapValidate
RtlUnwindEx
RaiseException
IsDebuggerPresent
IsProcessorFeaturePresent
GetModuleFileNameW
FatalAppExitA
GetStdHandle
InitOnceExecuteOnce
GetStartupInfoW
GetConsoleMode
ReadConsoleW
lstrlenA
LoadLibraryW
WideCharToMultiByte
WriteFile
GetProcessHeap
GetSystemTimeAsFileTime
GetTickCount64
GetEnvironmentStringsW
FreeEnvironmentStringsW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
WriteConsoleW

cublas64_92

cublasCreate_v2
cublasSgemm_v2

freeglut

glutMainLoop
glutInit
glutCreateWindow
glutDisplayFunc
glutInitWindowSize
glutInitDisplayMode

opengl32

glVertex2f
glLoadIdentity
glFinish
glEnd
glColor3f
glClear
glBegin

Exports

Exports

NvOptimusEnablementCuda

Sections

.text
Size: 889KB - Virtual size: 889KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 185KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 4.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nv_fatb
Size: 564KB - Virtual size: 564KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nvFatBi
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6be73a30fcc3fdc277a5e0aee3a8573a

Headers

DLL Characteristics

File Characteristics

Imports

cufft64_92

shell32

kernel32

cublas64_92

freeglut

opengl32

Exports

Exports

Sections

.text Size: 889KB - Virtual size: 889KB

.rdata Size: 185KB - Virtual size: 184KB

.data Size: 9KB - Virtual size: 4.8MB

.pdata Size: 37KB - Virtual size: 36KB

.idata Size: 8KB - Virtual size: 7KB

.nv_fatb Size: 564KB - Virtual size: 564KB

.nvFatBi Size: 512B - Virtual size: 284B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 13KB - Virtual size: 13KB

.text
Size: 889KB - Virtual size: 889KB

.rdata
Size: 185KB - Virtual size: 184KB

.data
Size: 9KB - Virtual size: 4.8MB

.pdata
Size: 37KB - Virtual size: 36KB

.idata
Size: 8KB - Virtual size: 7KB

.nv_fatb
Size: 564KB - Virtual size: 564KB

.nvFatBi
Size: 512B - Virtual size: 284B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 13KB - Virtual size: 13KB