c1137b87a7ba52f7faac574d8418e317

Sharing

Copy URL Twitter E-mail

General

Target

c1137b87a7ba52f7faac574d8418e317
Size

58KB
MD5

c1137b87a7ba52f7faac574d8418e317
SHA1

ebf8ec24026f81eef20ca41939f476e52225af73
SHA256

7c6e45c1e32c2396fe24aa85e197fc389962c72d6a2cc832659a79f159eb590f
SHA512

916a388e744d4b689f6e8b12b35a39967652ff532a85618cd5cb8959d7e2bfb52f911db30d0de6cc156bbce848cd30c9572afa6a124e5adc2edbc9c9c246dac2
SSDEEP

768:yl82mU0asZxSUvDYQk/jimM0CcoREBj+FWhM/0uPRe8BAKfm9aVHDdgh:t2mUrUxSUvDa/jRMHdE3M/rZO9atZgh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1137b87a7ba52f7faac574d8418e317

Files

c1137b87a7ba52f7faac574d8418e317
.exe windows:3 windows x86 arch:x86

ffb073ad440801116ed3ab8f1a273454

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW

kernel32

GetModuleFileNameA
GetStdHandle
UnhandledExceptionFilter
RtlUnwind
GetFileType
GetProcessHeap
WriteFile
GetStringTypeW
HeapAlloc
GetStartupInfoA
SetPriorityClass
GetPrivateProfileStringW
LCMapStringW
CompareStringW
GetSystemTime
GetCommandLineA
GetEnvironmentStrings
GetVersion
GetCommandLineW
GetModuleHandleW
GetPriorityClass
GetCurrentProcess
ExitProcess
CreateFileW
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
CloseHandle
LocalAlloc
LocalFree
SearchPathW
GetWindowsDirectoryW
WritePrivateProfileStringW
lstrlenW
GetPrivateProfileIntW
lstrcatW
FlushFileBuffers
SetStdHandle
GetLastError
CreateFileA
SetFilePointer
lstrcpyW
lstrcmpiW
MultiByteToWideChar
WideCharToMultiByte
HeapFree

gdi32

GetStockObject
DeleteDC
SetDIBits
SelectObject
CreateDIBSection
CreateCompatibleDC
RealizePalette
GetDeviceCaps
CreateSolidBrush
GdiFlush
UnrealizeObject
DeleteObject
ChoosePixelFormat
SetPixelFormat
GetPixelFormat
DescribePixelFormat
CreatePalette
SetSystemPaletteUse
SelectPalette

user32

GetWindowLongW
CallNextHookEx
GetActiveWindow
LoadIconW
PostQuitMessage
PostMessageW
SetCursorPos
GetCursorPos
SetWindowsHookW
DefWindowProcW
RegisterWindowMessageW
DispatchMessageW
GetMessageW
TranslateMessage
DestroyWindow
RegisterClassW
CreateWindowExW
FillRect
KillTimer
BeginPaint
EndPaint
GetDC
SetTimer
PostMessageA
ReleaseDC
GetClientRect
EndDialog
MessageBoxW
CheckDlgButton
EnableWindow
SetScrollRange
SetScrollPos
GetDlgItem
GetScrollPos
wsprintfW
LoadStringW
LoadStringA
MessageBoxA
GetFocus
wsprintfA
UnhookWindowsHook
SetCursor
DialogBoxParamW

opengl32

glMapGrid2f
glTexImage2D
glLoadIdentity
glScalef
glMatrixMode
glIsList
glTexParameteri
glTexEnvi
glPixelStorei
glEvalMesh2
glMap2f
glGetIntegerv
glMaterialfv
glMaterialf
glGenLists
glNormal3f
glVertex3f
glViewport
wglMakeCurrent
wglCreateContext
wglDeleteContext
wglGetCurrentDC
glCullFace
glLightfv
glLightModelfv
glEnable
glDepthFunc
glFrontFace
glClearColor
glOrtho
glEndList
glNewList
glRotatef
glPopMatrix
glCallList
glDisable
glTranslatef
glPushMatrix
glClear
glFlush
glEnd
glVertex3fv
glTexCoord2f
glNormal3fv
glBegin

comdlg32

GetOpenFileNameW

glu32

gluScaleImage
gluPerspective

Sections

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ffb073ad440801116ed3ab8f1a273454

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

opengl32

comdlg32

glu32

Sections

.text Size: 34KB - Virtual size: 34KB

.data Size: 13KB - Virtual size: 21KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 34KB - Virtual size: 34KB

.data
Size: 13KB - Virtual size: 21KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 4KB