bbc21c2d89b8e84eb099f558e9752bf6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bbc21c2d89b8e84eb099f558e9752bf6
Size

80KB
MD5

bbc21c2d89b8e84eb099f558e9752bf6
SHA1

39ca6823694feb2e69903b93ad7d1606d563f460
SHA256

51cfd45a1bb0598e9e8c88db1d1040c4e7a68b820bbacc89f4d681a270f0ba34
SHA512

51ff8f96e91bd2371e38e5bc89ed4d0fab3c6e8ccb86b702c0c70df1ac219c547738e9efa25654b56255b318ee4315dec28a73b3122da605c50cc63d19c29ef2
SSDEEP

1536:s2+Evl3lnwlpmxlgkEgLPBy7/a1ucUQfsONwg3uUyD3hVIbKH+bPCMdRD6WQCGSJ:sLENVnKpmxlFntyDnwvJyjW4+Fd0tCGe

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/HLGL 2.dll
unpack001/HLGL 2.exe

Files

bbc21c2d89b8e84eb099f558e9752bf6
.zip
HLGL 2.dll
.dll windows:4 windows x86 arch:x86

eae18a11c1c3b26b1b4584c59b846f9c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

MessageBoxA

opengl32

glBegin

msvcrt

_stricmp

Sections

.text
Size: 6KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
HLGL 2.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

nsp0
Size: 3B - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nsp1
Size: 69KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
HLGL 2.txt
_help.url
_read.txt