be5da87f02c800d8370fcc5bf518d04f

Sharing

Copy URL

Twitter E-mail

General

Target

be5da87f02c800d8370fcc5bf518d04f
Size

64KB
MD5

be5da87f02c800d8370fcc5bf518d04f
SHA1

26ab759d5d482b951a0f1350b2790e91484fd70d
SHA256

2781306a8716721a5773c4a6c563357b9c7698d48fe2170e107ff572070445fb
SHA512

6fc015d864810be1d914d6096f367aff388fc6d9adc2d1395ad16b95e5583948015d2e000d7071e01de953943035d1b6d3ef299d799e44fdc809bfb1b41aaab5
SSDEEP

1536:POAjGwCsuFIBMXJYdU4mW+RdKn+Uycz1hfq9FPVGwVwrg:POAKDsuKyJYW4mWSdKn+Uhhqlwrg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be5da87f02c800d8370fcc5bf518d04f

Files

be5da87f02c800d8370fcc5bf518d04f
.exe windows:4 windows x86 arch:x86

822c77b91ba8020e5da826dde10148b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

libopenfoam

_ZN4Foam10FatalErrorE
_ZN4Foam10SLListBase6appendEPNS0_4linkE
_ZN4Foam10readScalarERNS_7IstreamE
_ZN4Foam11openLibraryERKNS_8fileNameE
_ZN4Foam12cellModeller6lookupERKNS_4wordE
_ZN4Foam13messageStreamcvRNS_8OSstreamEEv
_ZN4Foam4InfoE
_ZN4Foam4Time15controlDictNameE
_ZN4Foam4TimeC1ERKNS_4wordERKNS_8fileNameES6_S3_S3_
_ZN4Foam4TimeD1Ev
_ZN4Foam4word5debugE
_ZN4Foam5error4exitEi
_ZN4Foam5error5abortEv
_ZN4Foam5errorclEPKcS2_i
_ZN4Foam5planeC1ERKNS_6VectorIdEES4_
_ZN4Foam6HasherEPKvjj
_ZN4Foam6string14removeRepeatedEc
_ZN4Foam6string14removeTrailingEc
_ZN4Foam7argList10noParallelEv
_ZN4Foam7argList12validOptionsE
_ZN4Foam7argList9validArgsE
_ZN4Foam7argListC1ERiRPPcbb
_ZN4Foam7argListD1Ev
_ZN4Foam8IOobjectC1ERKNS_4wordERKNS_8fileNameERKNS_14objectRegistryENS0_10readOptionENS0_11writeOptionEb
_ZN4Foam8IOobjectD1Ev
_ZN4Foam8IOstream14currentVersionE
_ZN4Foam8IOstream5name_E
_ZN4Foam8fileName5debugE
_ZN4Foam8polyMesh10movePointsERKNS_5FieldINS_6VectorIdEEEE
_ZN4Foam8polyMesh11setInstanceERKNS_8fileNameE
_ZN4Foam8polyMesh13defaultRegionE
_ZN4Foam8polyMeshC1ERKNS_8IOobjectE
_ZN4Foam8polyMeshD1Ev
_ZN4FoamdvERKNS_6stringES2_
_ZN4FoamlsERNS_7OstreamEPKc
_ZN4FoamlsERNS_7OstreamERKNS_4wordE
_ZN4FoamlsERNS_7OstreamERKNS_5token16punctuationTokenE
_ZN4FoamlsERNS_7OstreamERKNS_6stringE
_ZN4FoamlsERNS_7OstreamERKNS_8fileNameE
_ZN4FoamlsERNS_7OstreamEc
_ZN4FoamlsERNS_7OstreamEd
_ZN4FoamlsERNS_7OstreamEi
_ZN4FoamrsERNS_7IstreamERd
_ZNK4Foam11regIOobject5writeEv
_ZNK4Foam13primitiveMesh10cellShapesEv
_ZNK4Foam13primitiveMesh11faceCentresEv
_ZNK4Foam13primitiveMesh5cellsEv
_ZNK4Foam13primitiveMesh5edgesEv
_ZNK4Foam13primitiveMesh9cellEdgesEv
_ZNK4Foam13primitiveMesh9faceAreasEv
_ZNK4Foam4Time8timeNameEv
_ZNK4Foam7argList13checkRootCaseEv
_ZNK4Foam7argList14additionalArgsEv
_ZNK4Foam8IOstream5checkEPKc
_ZNK4Foam8IOstream5printERNS_7OstreamE
_ZNK4Foam8polyMesh14pointsInstanceEv
_ZTVN4Foam13IStringStreamE
_ZTVN4Foam4TimeE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8ISstreamE
_ZN4Foam8IOstream5name_E
_ZN4Foam8IOstream5name_E
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZN4Foam10FatalErrorE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8IOstreamE
_ZTVN4Foam8IOstreamE
_ZN4Foam4word5debugE
_ZN4Foam4word5debugE
_ZN4Foam4word5debugE
_ZN4Foam4word5debugE
_ZN4Foam8fileName5debugE
_ZN4Foam8fileName5debugE
_ZTVN4Foam8ISstreamE
_ZTVN4Foam8ISstreamE
_ZTVN4Foam8ISstreamE
_ZTVN4Foam8ISstreamE
_ZTVN4Foam8ISstreamE
_ZTVN4Foam13IStringStreamE
_ZTVN4Foam13IStringStreamE
_ZTVN4Foam13IStringStreamE
_ZTVN4Foam13IStringStreamE
_ZN4Foam7argList12validOptionsE
_ZN4Foam7argList12validOptionsE
_ZN4Foam7argList12validOptionsE
_ZN4Foam7argList12validOptionsE
_ZN4Foam7argList9validArgsE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4InfoE
_ZN4Foam4Time15controlDictNameE
_ZN4Foam8polyMesh13defaultRegionE
_ZN4Foam8IOstream14currentVersionE
_ZN4Foam8IOstream14currentVersionE
_ZTVN4Foam4TimeE

libdynamicmesh

_ZN4Foam10meshCutter10updateMeshERKNS_11mapPolyMeshE
_ZN4Foam10meshCutter13setRefinementERKNS_8cellCutsERNS_14polyTopoChangeE
_ZN4Foam10meshCutterC1ERKNS_8polyMeshE
_ZN4Foam10meshCutterD1Ev
_ZN4Foam14geomCellLooper8snapTol_E
_ZN4Foam14geomCellLooperC1ERKNS_8polyMeshE
_ZN4Foam14geomCellLooperD1Ev
_ZN4Foam14polyTopoChange10changeMeshERNS_8polyMeshEbbbb
_ZN4Foam14polyTopoChangeC1ERKNS_8polyMeshEb
_ZN4Foam8cellCutsC1ERKNS_8polyMeshERKNS_4ListIiEERKNS4_IS5_EERKNS4_INS_5FieldIdEEEE
_ZN4Foam8cellCutsD1Ev
_ZN4Foam14geomCellLooper8snapTol_E

libmeshtools

_ZN4Foam7cellSet10updateMeshERKNS_11mapPolyMeshE
_ZN4Foam7cellSetC1ERKNS_8polyMeshERKNS_4wordENS_8IOobject10readOptionENS7_11writeOptionE
_ZN4Foam7cellSetC1ERKNS_8polyMeshERKNS_4wordEiNS_8IOobject11writeOptionE
_ZN4Foam7cellSetD1Ev
_ZN4Foam7topoSetaSERKS0_
_ZN4Foam9meshTools12getEdgeFacesERKNS_13primitiveMeshEiiRiS4_

libgcc_s_sjlj-1

_Unwind_SjLj_Register
_Unwind_SjLj_Resume
_Unwind_SjLj_Unregister

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

__dllonexit
__getmainargs
__initenv
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_fmode
_initterm
_iob
_lock
_onexit
_unlock
abort
calloc
cos
exit
fprintf
free
fwrite
malloc
memcmp
memcpy
signal
sin
sqrt
strlen
vfprintf

libstdc++-6

_ZNKSt5ctypeIcE13_M_widen_initEv
_ZNSo3putEc
_ZNSo5flushEv
_ZNSolsEi
_ZNSs12_M_leak_hardEv
_ZNSs4_Rep10_M_destroyERKSaIcE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs6assignERKSs
_ZNSs6resizeEjc
_ZNSsC1EPKcjRKSaIcE
_ZNSsC2EPKcRKSaIcE
_ZNSsC2ERKSs
_ZNSsD1Ev
_ZNSsD2Ev
_ZNSt15basic_stringbufIcSt11char_traitsIcESaIcEE7_M_syncEPcjj
_ZNSt6localeC1Ev
_ZNSt6localeD1Ev
_ZNSt8ios_base4InitC1Ev
_ZNSt8ios_base4InitD1Ev
_ZNSt8ios_baseC2Ev
_ZNSt8ios_baseD2Ev
_ZNSt9basic_iosIcSt11char_traitsIcEE4initEPSt15basic_streambufIcS1_E
_ZNSt9basic_iosIcSt11char_traitsIcEE5clearESt12_Ios_Iostate
_ZSt16__ostream_insertIcSt11char_traitsIcEERSt13basic_ostreamIT_T0_ES6_PKS3_i
_ZSt16__throw_bad_castv
_ZSt4cerr
_ZSt4endlIcSt11char_traitsIcEERSt13basic_ostreamIT_T0_ES6_
_ZStlsISt11char_traitsIcEERSt13basic_ostreamIcT_ES5_PKc
_ZTISi
_ZTISt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTTSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTVN10__cxxabiv117__class_type_infoE
_ZTVN10__cxxabiv120__si_class_type_infoE
_ZTVSt15basic_streambufIcSt11char_traitsIcEE
_ZTVSt15basic_stringbufIcSt11char_traitsIcESaIcEE
_ZTVSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTVSt9basic_iosIcSt11char_traitsIcEE
_ZdaPv
_ZdlPv
_Znaj
_Znwj
__cxa_bad_cast
__cxa_pure_virtual
__dynamic_cast
__gxx_personality_sj0
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZNSs4_Rep20_S_empty_rep_storageE
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZSt4cerr
_ZTISt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTISt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTISi
_ZTISi
_ZTVSt15basic_stringbufIcSt11char_traitsIcESaIcEE
_ZTVSt15basic_stringbufIcSt11char_traitsIcESaIcEE
_ZTVSt15basic_stringbufIcSt11char_traitsIcESaIcEE
_ZTVSt15basic_streambufIcSt11char_traitsIcEE
_ZTVSt15basic_streambufIcSt11char_traitsIcEE
_ZTVSt15basic_streambufIcSt11char_traitsIcEE
_ZTVSt15basic_streambufIcSt11char_traitsIcEE
_ZTVSt15basic_streambufIcSt11char_traitsIcEE
_ZTTSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTTSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTTSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTTSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTTSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTTSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTTSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTTSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTTSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTVSt9basic_iosIcSt11char_traitsIcEE
_ZTVSt9basic_iosIcSt11char_traitsIcEE
_ZTVSt9basic_iosIcSt11char_traitsIcEE
_ZTVSt9basic_iosIcSt11char_traitsIcEE
_ZTVSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTVSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTVSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTVSt19basic_istringstreamIcSt11char_traitsIcESaIcEE
_ZTVN10__cxxabiv120__si_class_type_infoE
_ZTVN10__cxxabiv117__class_type_infoE

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

822c77b91ba8020e5da826dde10148b6

Headers

File Characteristics

Imports

libopenfoam

libdynamicmesh

libmeshtools

libgcc_s_sjlj-1

kernel32

msvcrt

libstdc++-6

Sections

.text Size: 44KB - Virtual size: 44KB

.data Size: 3KB - Virtual size: 3KB

.rdata Size: 512B - Virtual size: 424B

.bss Size: - Virtual size: 1KB

.idata Size: 12KB - Virtual size: 12KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 44KB - Virtual size: 44KB

.data
Size: 3KB - Virtual size: 3KB

.rdata
Size: 512B - Virtual size: 424B

.bss
Size: - Virtual size: 1KB

.idata
Size: 12KB - Virtual size: 12KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 1KB - Virtual size: 1KB