d674848589481d1be58ee129c4a4fb1424b7864e1e6ed4c929a11ba9941c12b1

Sharing

Copy URL Twitter E-mail

General

Target

d674848589481d1be58ee129c4a4fb1424b7864e1e6ed4c929a11ba9941c12b1
Size

23.6MB
MD5

9f5fa83018415dca2432a1676b864d1a
SHA1

2c2dd4a49a22f5f4530d4aee564f84e42ea25e40
SHA256

d674848589481d1be58ee129c4a4fb1424b7864e1e6ed4c929a11ba9941c12b1
SHA512

45f211ee17f6ca740e76fecea2c7ae844e5e37859fe747d9bc912aeb398074580e79b913f03d8b5c028fa55efe563dfde60c88c2a6ce72be98c1873a792386f9
SSDEEP

196608:W6aYy7W3unVJnO4q9mmHOSIEruM/9zKXv:W6PjunfnO44BtQf

Score

1^/10

Malware Config

Signatures

Files

d674848589481d1be58ee129c4a4fb1424b7864e1e6ed4c929a11ba9941c12b1
.exe windows:5 windows x86 arch:x86

d5b436873b074cba4bf957cefc8e1175

Code Sign

1c:cf:9d:67:cd:e2:19:ff:12:d9:9a:ff:36:82:e5:a7
Certificate

Issuer

CN=SSL.com Root Certification Authority ECC,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

07/03/2019, 19:35

Not After

03/03/2034, 19:35

Subject

CN=SSL.com Code Signing Intermediate CA ECC R2,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3e:52:72:98:db:e6:b6:93:88:b7:bc:34:1a:d0:14:6c
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA ECC R2,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

13/11/2023, 16:04

Not After

12/11/2026, 16:04

Subject

CN=PrestoSoft LLC,O=PrestoSoft LLC,L=Oak Park,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

1c:cf:9d:67:cd:e2:19:ff:12:d9:9a:ff:36:82:e5:a7
Certificate

Issuer

CN=SSL.com Root Certification Authority ECC,O=SSL Corporation,L=Houston,ST=Texas,C=US

Not Before

07/03/2019, 19:35

Not After

03/03/2034, 19:35

Subject

CN=SSL.com Code Signing Intermediate CA ECC R2,O=SSL Corp,L=Houston,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

3e:52:72:98:db:e6:b6:93:88:b7:bc:34:1a:d0:14:6c
Certificate

Issuer

CN=SSL.com Code Signing Intermediate CA ECC R2,O=SSL Corp,L=Houston,ST=Texas,C=US

Not Before

13/11/2023, 16:04

Not After

12/11/2026, 16:04

Subject

CN=PrestoSoft LLC,O=PrestoSoft LLC,L=Oak Park,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

03/05/2023, 00:00

Not After

02/08/2034, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #4,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

12:45:81:5a:50:ca:4d:d8:c3:37:ff:fc:c9:df:4a:10:e0:82:38:e3:4c:a9:04:5e:f6:8e:fa:73:d5:5d:46:6c
Signer

Actual PE Digest

12:45:81:5a:50:ca:4d:d8:c3:37:ff:fc:c9:df:4a:10:e0:82:38:e3:4c:a9:04:5e:f6:8e:fa:73:d5:5d:46:6c

Digest Algorithm

sha256

PE Digest Matches

false

44:da:48:15:22:1b:af:50:ab:17:f6:de:ba:07:ba:aa:d7:85:d5:93
Signer

Actual PE Digest

44:da:48:15:22:1b:af:50:ab:17:f6:de:ba:07:ba:aa:d7:85:d5:93

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Src\ExamDiff 14.0\Win32\Portable Release\ExamDiff.pdb

Imports

mpr

WNetGetConnectionW

iphlpapi

GetAdaptersInfo

winhttp

WinHttpReadData
WinHttpCloseHandle
WinHttpOpen
WinHttpSetTimeouts
WinHttpQueryDataAvailable
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpOpenRequest
WinHttpConnect

kernel32

GetUserDefaultUILanguage
WaitForSingleObjectEx
UnhandledExceptionFilter
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
GlobalReAlloc
GetProfileIntW
GlobalGetAtomNameW
ReleaseSemaphore
CompareStringA
GetFileAttributesExW
UnlockFile
LockFile
FlushFileBuffers
SuspendThread
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
GlobalDeleteAtom
LoadLibraryExW
EncodePointer
OutputDebugStringA
QueryPerformanceFrequency
QueryPerformanceCounter
GetThreadTimes
SetVolumeLabelW
UnregisterWaitEx
QueryDepthSList
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
SignalObjectAndWait
CreateTimerQueue
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
FindFirstFileExW
EnumSystemLocalesW
IsValidLocale
GetConsoleCP
HeapQueryInformation
TzSpecificLocalTimeToSystemTime
PeekNamedPipe
SetCurrentDirectoryW
SetEnvironmentVariableW
SetEnvironmentVariableA
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
SetConsoleMode
ReadConsoleInputA
GetCommandLineA
SetFilePointerEx
SetStdHandle
ReadConsoleW
GetConsoleMode
GetFileType
InterlockedFlushSList
RtlUnwind
GetUserDefaultLangID
GetPrivateProfileSectionNamesW
GetCurrencyFormatW
EnumResourceLanguagesW
EnumResourceTypesW
CreateThread
EnumResourceNamesW
SwitchToThread
GetNativeSystemInfo
GetStringTypeW
TryEnterCriticalSection
GetSystemDefaultUILanguage
GlobalFlags
SetErrorMode
ReplaceFileW
GetDiskFreeSpaceW
GetCurrentDirectoryW
ExpandEnvironmentStringsA
LoadLibraryExA
VirtualQuery
VirtualProtect
GetCPInfo
VirtualAlloc
VirtualFree
SetEndOfFile
lstrlenA
GetCurrentThread
GetThreadPriority
ReadDirectoryChangesW
GetQueuedCompletionStatus
CancelIo
PostQueuedCompletionStatus
CreateIoCompletionPort
FreeResource
GetModuleHandleA
GetSystemInfo
CopyFileExW
HeapDestroy
DecodePointer
HeapReAlloc
HeapSize
GetSystemTimeAsFileTime
lstrcmpA
GetTimeZoneInformation
GetCPInfoExW
EnumSystemCodePagesW
GetPrivateProfileSectionW
WritePrivateProfileSectionW
LocalReAlloc
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
OutputDebugStringW
LocalAlloc
GetFileTime
FindCloseChangeNotification
FindNextChangeNotification
FindFirstChangeNotificationW
WinExec
SetThreadPriority
InterlockedExchange
GetLocalTime
SetUnhandledExceptionFilter
MoveFileW
GetTimeFormatW
GetDateFormatW
ExitProcess
GetThreadLocale
UnmapViewOfFile
GetFileSizeEx
MapViewOfFile
CreateFileMappingW
ExpandEnvironmentStringsW
GetFileSize
GetNumberFormatW
GetPrivateProfileIntW
GetSystemTime
GetWindowsDirectoryW
WaitForMultipleObjects
OpenProcess
GetSystemDirectoryW
CompareFileTime
CopyFileW
WriteConsoleW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetShortPathNameW
DuplicateHandle
HeapFree
GetProcessHeap
HeapAlloc
SetLastError
GlobalFree
LocalFree
FormatMessageW
GetFullPathNameW
TerminateThread
SetConsoleTextAttribute
SetConsoleWindowInfo
FillConsoleOutputAttribute
SetConsoleScreenBufferSize
GetConsoleScreenBufferInfo
GetStdHandle
AllocConsole
Sleep
GetCurrentProcessId
SystemTimeToTzSpecificLocalTime
TerminateProcess
SetFileAttributesW
FindNextFileW
CreateDirectoryW
FindClose
FindFirstFileW
GetExitCodeProcess
ResetEvent
GetDriveTypeW
lstrcmpiW
GlobalHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
LCMapStringW
LoadLibraryA
GetStringTypeExW
GetUserDefaultLCID
lstrlenW
lstrcpynW
GetTempFileNameW
GetTempPathW
SearchPathW
lstrcmpW
WriteFile
GlobalSize
SetFilePointer
ReadFile
CreateFileW
DeleteFileW
GetTickCount
ResumeThread
GetCurrentThreadId
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
GlobalAlloc
MulDiv
GlobalLock
GlobalUnlock
GetFileAttributesW
GetACP
GetLocaleInfoW
InterlockedDecrement
InterlockedIncrement
InterlockedPushEntrySList
TlsSetValue
TlsGetValue
TlsFree
InterlockedPopEntrySList
InitializeSListHead
TlsAlloc
SetEvent
InterlockedCompareExchange
CreateEventW
FreeLibrary
LoadLibraryW
CreateProcessW
lstrcatW
lstrcpyW
CloseHandle
ReleaseMutex
WaitForSingleObject
CreateMutexW
GetCommandLineW
GetVersionExW
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
GetLastError
RaiseException
WideCharToMultiByte
GetVolumeInformationW
GetComputerNameW
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
GetVersion
InitializeCriticalSection

user32

RemoveMenu
InsertMenuW
GetMenuState
GetMenuStringW
SendDlgItemMessageA
OemToCharBuffA
CharToOemBuffA
DrawEdge
GetWindowDC
CreateIconIndirect
CopyAcceleratorTableW
DestroyAcceleratorTable
CreateAcceleratorTableW
CharNextExA
IsClipboardFormatAvailable
GetAsyncKeyState
BringWindowToTop
DestroyCaret
GetScrollInfo
ScrollWindowEx
SetScrollPos
VkKeyScanW
SetCaretPos
BeginPaint
EndPaint
CreateCaret
ShowCaret
TranslateAcceleratorW
MoveWindow
PostThreadMessageW
CreateWindowExW
RegisterClassW
DestroyWindow
GetSystemMenu
UnregisterClassW
GetDlgItem
HideCaret
GetActiveWindow
IsChild
GetClassNameW
FindWindowW
GetMenuDefaultItem
GetMenuItemInfoW
DeleteMenu
CheckMenuItem
EnumChildWindows
EnumDisplayMonitors
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
SetMenuItemInfoW
GetMessageTime
CallWindowProcW
GetClassInfoExW
IsMenu
GetWindowPlacement
SetWindowPlacement
GetMenu
SetMenu
TrackPopupMenu
TrackPopupMenuEx
SetActiveWindow
SetMenuItemBitmaps
ValidateRect
RegisterWindowMessageW
GetWindowRect
EnableWindow
SendMessageW
PtInRect
InvalidateRect
IsWindow
PostMessageW
LoadCursorW
AttachThreadInput
ShowScrollBar
CopyIcon
wsprintfA
SetScrollInfo
wsprintfW
DrawStateW
DrawMenuBar
SetFocus
IsWindowEnabled
MessageBeep
GetWindowThreadProcessId
MsgWaitForMultipleObjects
GetMessageW
MsgWaitForMultipleObjectsEx
GetForegroundWindow
GetKeyboardLayout
SetWindowTextW
GetWindowTextW
IntersectRect
PostQuitMessage
PeekMessageW
SetRect
MessageBoxW
WindowFromPoint
UnionRect
LoadBitmapW
SendMessageTimeoutW
SetMenuDefaultItem
AppendMenuW
CreatePopupMenu
GetFocus
SetKeyboardState
GetKeyboardState
SetClassLongW
GetClassLongW
CharLowerBuffW
IsIconic
SetForegroundWindow
CloseDesktop
CreateDesktopW
EnableScrollBar
LoadStringW
ScrollWindow
DestroyCursor
CopyRect
GetLastActivePopup
GetCursorPos
DrawIconEx
ScreenToClient
GetWindowLongW
MapDialogRect
GetDlgCtrlID
EnableMenuItem
GetSubMenu
LoadMenuW
IsWindowVisible
GetWindow
EndDeferWindowPos
GetScrollPos
SetScrollRange
GetScrollRange
SetPropW
GetPropW
RemovePropW
GetWindowTextLengthW
AdjustWindowRectEx
GetTopWindow
WinHelpW
MonitorFromWindow
ShowWindow
SetDlgItemTextW
CheckDlgButton
IsDlgButtonChecked
IsDialogMessageW
GetKeyNameTextW
MapVirtualKeyW
CharUpperW
GetDialogBaseUnits
CreateDialogIndirectParamW
EndDialog
GetNextDlgTabItem
ShowOwnedPopups
SetCursorPos
LoadAcceleratorsW
DestroyMenu
UnpackDDElParam
ReuseDDElParam
DrawIcon
NotifyWinEvent
WaitMessage
SetParent
GetTabbedTextExtentW
GetDCEx
RealChildWindowFromPoint
WindowFromDC
CreateMenu
InsertMenuItemW
BeginDeferWindowPos
DeferWindowPos
GetClipboardData
CreateIconFromResourceEx
SetWindowLongW
LockWindowUpdate
SetWindowPos
IsZoomed
GetComboBoxInfo
FrameRect
ChildWindowFromPointEx
ChildWindowFromPoint
DrawFocusRect
MapWindowPoints
GetMessagePos
GrayStringW
DrawTextExW
TabbedTextOutW
GetCursor
DrawTextW
GetClassInfoW
DispatchMessageW
TranslateMessage
CharPrevW
CharNextW
LoadIconW
GetDesktopWindow
CharLowerW
GetPriorityClipboardFormat
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
EqualRect
ReleaseCapture
RegisterClassExW
GetSysColorBrush
DefWindowProcW
RedrawWindow
SetWindowRgn
SetRectEmpty
DrawFrameControl
GetClientRect
GetMonitorInfoW
MonitorFromPoint
IsRectEmpty
ClientToScreen
SetCapture
GetCapture
KillTimer
SetTimer
DestroyIcon
GetIconInfo
LoadImageW
GetParent
GetSysColor
GetKeyState
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
OffsetRect
SystemParametersInfoW
GetDC
ReleaseDC
GetSystemMetrics
InvertRect
OpenInputDesktop
GetUserObjectInformationW
GetWindowRgn
LookupIconIdFromDirectoryEx
IsWindowUnicode
GetWindowLongA
SetWindowLongA
ToUnicodeEx
GetKeyboardLayoutList
IsCharLowerW
VkKeyScanExW
MapVirtualKeyExW
EnumWindows
GetClipboardFormatNameW
GetDoubleClickTime
GetTabbedTextExtentA
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
SetWindowContextHelpId
InvalidateRgn
GetNextDlgGroupItem
RegisterClipboardFormatW
SetCursor
UpdateWindow
InflateRect
FillRect

gdi32

ScaleViewportExtEx
ScaleWindowExtEx
GetMapMode
SetRectRgn
CreateEllipticRgn
Ellipse
CreateDIBSection
LPtoDP
GetCharWidthW
GetROP2
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextColor
GetWindowOrgEx
GetTextFaceW
SetWindowOrgEx
SetWindowExtEx
SetViewportExtEx
PolyBezierTo
SetStretchBltMode
SelectObject
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
IntersectClipRect
GetWindowExtEx
CreateSolidBrush
GetTextExtentPoint32W
GetDeviceCaps
DeleteObject
GetObjectW
CreateCompatibleDC
CreateCompatibleBitmap
StretchBlt
CreateFontIndirectW
GetStockObject
OffsetRgn
FrameRgn
CreatePolygonRgn
CopyMetaFileW
ExcludeClipRect
GetClipBox
CreateRoundRectRgn
GetClipRgn
GetCurrentPositionEx
CreateRectRgn
CombineRgn
OffsetViewportOrgEx
GetPixel
DeleteDC
GetDIBits
SetDIBits
SetPixel
GetBkColor
BitBlt
Rectangle
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
CreatePen
CreateHatchBrush
GetTextMetricsW
GetBitmapBits
CreateRectRgnIndirect
PatBlt
EnumFontFamiliesExW
SetBkColor
SetTextColor
ExtTextOutA
SetBkMode
MoveToEx
LineTo
GetViewportOrgEx
SetViewportOrgEx
DPtoLP
SetBrushOrgEx
CreateDCW
SetAbortProc
StartDocW
StartPage
EndPage
EndDoc
AbortDoc
CreateFontW
Polygon
StretchDIBits
SetTextAlign
TextOutA
GetBkMode
CreateBitmap
CreatePatternBrush
GetTextExtentExPointW
GetCurrentObject
EqualRgn
CreateBrushIndirect
BeginPath
EndPath
StrokePath
PtInRegion
ExtCreateRegion
Polyline
ExtFloodFill
GetRgnBox
RoundRect
GetTextExtentPoint32A
CloseFigure
FillPath
StrokeAndFillPath
GetObjectA
ChoosePixelFormat
SetPixelFormat
GdiFlush
GetViewportExtEx
SetTextJustification

advapi32

RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
RegQueryValueExW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
OpenProcessToken
IsTextUnicode
RegDeleteValueW
RegOpenKeyW
RegDeleteKeyW
RegEnumKeyExW
RegQueryInfoKeyW
RegEnumValueW
LookupPrivilegeValueW
AdjustTokenPrivileges
SetFileSecurityW
GetFileSecurityW
RegEnumKeyW
RegSetValueW
CryptGenRandom
CryptReleaseContext
CryptAcquireContextA
RegOpenKeyExA
RegQueryValueExA
SetNamedSecurityInfoW
GetNamedSecurityInfoW
RegQueryValueW

comctl32

ImageList_AddMasked
ImageList_Add
ImageList_GetImageCount
ImageList_GetIcon
ImageList_GetIconSize
ImageList_SetBkColor
ImageList_Draw
ImageList_GetImageInfo
ImageList_Destroy
_TrackMouseEvent
ImageList_DrawEx
ImageList_LoadImageW
ord13
ord14
ImageList_BeginDrag
ImageList_DragEnter
ImageList_DragMove
ImageList_DragLeave
ImageList_EndDrag
ImageList_DragShowNolock
ord17
ImageList_ReplaceIcon

shlwapi

PathCombineW
UrlUnescapeW
PathRemoveFileSpecW
PathFindFileNameW
PathFindExtensionW
PathStripToRootW
PathIsUNCW
UrlCreateFromPathW
UrlEscapeW
StrCmpIW
StrCmpLogicalW
StrStrW
SHStrDupW

uxtheme

DrawThemeParentBackground
CloseThemeData
DrawThemeBackground
SetWindowTheme
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
OpenThemeData
IsAppThemed

oleaut32

SystemTimeToVariantTime
VarUdateFromDate
VarBstrFromDate
SysStringByteLen
SysAllocStringByteLen
SysAllocStringLen
VariantChangeType
SysStringLen
VariantCopy
LoadTypeLi
VariantTimeToSystemTime
SafeArrayDestroy
SysFreeString
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayAccessData
SafeArrayUnaccessData
VarDateFromStr
VariantClear
VariantInit
SysAllocString
OleLoadPicturePath
VariantChangeTypeEx
SafeArrayCreateVector
OleCreateFontIndirect
GetErrorInfo

oledlg

OleUIAddVerbMenuW
OleUIBusyW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

glu32

gluProject
gluPerspective
gluLookAt
gluUnProject

opengl32

glDeleteLists
glRotated
glNormal3d
glMultMatrixd
glVertex3d
glLineWidth
glDisable
glViewport
glShadeModel
glReadPixels
glPushMatrix
glPushAttrib
glPopMatrix
glPopAttrib
glMaterialfv
glLoadIdentity
glLightfv
glLightModelfv
glIsEnabled
glHint
glGetDoublev
glFrontFace
glFlush
glFinish
glEnable
glCullFace
glColorMaterial
glClearDepth
glClearColor
glClearAccum
glClear
glBlendFunc
glAccum
wglMakeCurrent
wglDeleteContext
wglCreateContext
glTranslated
glMatrixMode
glLoadMatrixf
glGetIntegerv
glGetFloatv
glEnd
glColor4f
glBegin

Exports

Exports

tree_sitter_bash
tree_sitter_c_sharp
tree_sitter_cpp
tree_sitter_css
tree_sitter_html
tree_sitter_java
tree_sitter_javascript
tree_sitter_json
tree_sitter_php
tree_sitter_python
tree_sitter_ruby
tree_sitter_typescript

Sections

.text
Size: 6.6MB - Virtual size: 6.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13.5MB - Virtual size: 13.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 122KB - Virtual size: 802KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5b436873b074cba4bf957cefc8e1175

Code Sign

1c:cf:9d:67:cd:e2:19:ff:12:d9:9a:ff:36:82:e5:a7Certificate

Extended Key Usages

Key Usages

3e:52:72:98:db:e6:b6:93:88:b7:bc:34:1a:d0:14:6cCertificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

1c:cf:9d:67:cd:e2:19:ff:12:d9:9a:ff:36:82:e5:a7Certificate

Extended Key Usages

Key Usages

3e:52:72:98:db:e6:b6:93:88:b7:bc:34:1a:d0:14:6cCertificate

Extended Key Usages

Key Usages

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4Certificate

Extended Key Usages

Key Usages

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9Certificate

Extended Key Usages

Key Usages

12:45:81:5a:50:ca:4d:d8:c3:37:ff:fc:c9:df:4a:10:e0:82:38:e3:4c:a9:04:5e:f6:8e:fa:73:d5:5d:46:6cSigner

44:da:48:15:22:1b:af:50:ab:17:f6:de:ba:07:ba:aa:d7:85:d5:93Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mpr

iphlpapi

winhttp

kernel32

user32

gdi32

advapi32

comctl32

shlwapi

uxtheme

oleaut32

oledlg

version

oleacc

glu32

opengl32

Exports

Exports

Sections

.text Size: 6.6MB - Virtual size: 6.6MB

.rdata Size: 13.5MB - Virtual size: 13.5MB

.data Size: 122KB - Virtual size: 802KB

.rsrc Size: 3.3MB - Virtual size: 3.3MB

1c:cf:9d:67:cd:e2:19:ff:12:d9:9a:ff:36:82:e5:a7
Certificate

3e:52:72:98:db:e6:b6:93:88:b7:bc:34:1a:d0:14:6c
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

1c:cf:9d:67:cd:e2:19:ff:12:d9:9a:ff:36:82:e5:a7
Certificate

3e:52:72:98:db:e6:b6:93:88:b7:bc:34:1a:d0:14:6c
Certificate

39:4c:25:e1:7c:a0:6d:27:a8:65:e2:3b:d9:1d:22:d4
Certificate

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

12:45:81:5a:50:ca:4d:d8:c3:37:ff:fc:c9:df:4a:10:e0:82:38:e3:4c:a9:04:5e:f6:8e:fa:73:d5:5d:46:6c
Signer

44:da:48:15:22:1b:af:50:ab:17:f6:de:ba:07:ba:aa:d7:85:d5:93
Signer

.text
Size: 6.6MB - Virtual size: 6.6MB

.rdata
Size: 13.5MB - Virtual size: 13.5MB

.data
Size: 122KB - Virtual size: 802KB

.rsrc
Size: 3.3MB - Virtual size: 3.3MB