d5cc8aac823f26fc7372383758c8bef4

Sharing

Copy URL Twitter E-mail

General

Target

d5cc8aac823f26fc7372383758c8bef4
Size

38KB
MD5

d5cc8aac823f26fc7372383758c8bef4
SHA1

2e4b941ba2611b75ae12850c962ce3ead36a802b
SHA256

dcf84eb06d1c2e6cc4e663e50877e204f5a9344ef80b944cdfe9edd565b332a4
SHA512

107bd82260f86b375023ef8cd7c407f440ab21a3b81331831fa6e05426dde03e0666ad370ceab3d894806f3cd9774fa29e860ca7c4b52d71cc5d38e457645b2c
SSDEEP

768:LsJnsEtGpdvsqFX64WM3hM7pIqREd9dCZkWtmYruu:GdOsqFXaMhM5EROBuu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5cc8aac823f26fc7372383758c8bef4

Files

d5cc8aac823f26fc7372383758c8bef4
.exe windows:5 windows x86 arch:x86

9917a50e20caa55cff0d73baff9079e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glMap1d
glMapGrid1d
glColor4d
glNormal3iv
glNormal3i
wglCreateContext
wglSetLayerPaletteEntries
glClearIndex
glGetPointerv
glTexCoord2dv
glTexParameterfv
GlmfCloseMetaFile
glGenLists
glVertex4dv
glBlendFunc
glColor4fv
glVertexPointer
glRectiv
glPopName
glRasterPos4fv
glVertex2iv
glLightModeliv
glRects
glColor3i
glColor3us
glLightModeli
glColor4bv
glRasterPos3sv

hhsetup

?First@CPointerList@@QAEPAUListItem@@XZ
?GetNextFolder@CFolder@@QAEPAV1@XZ
??0CLocation@@QAE@XZ
?AddTitle@CCollection@@QAEPAVCTitle@@PBG0000GIPAVCLocation@@PAKH0@Z
?IncrementRefTitleCount@CCollection@@QAEXXZ
?AddLocation@CCollection@@QAEPAVCLocation@@PBG000PAK@Z
?HandleCollectionEntry@CCollection@@AAEKPAVCParseXML@@PAD@Z
?WriteFolders@CCollection@@AAEHPAPAVCFolder@@@Z
?SetId@CLocation@@QAEXPBD@Z
?SetId@CTitle@@QAEXPBG@Z
?CheckTitleRef@CCollection@@AAEKPBDG@Z
?GetVolumeW@CLocation@@QAEPBGXZ
?HandleTitle@CCollection@@AAEKPAVCParseXML@@PAD@Z
?GetLanguage@CTitle@@QAEGXZ
?Close@CCollection@@QAEKXZ
?IsDirty@CCollection@@QAEHXZ
?GetTail@CFIFOString@@QAEKPAPAD@Z
?GetSampleLocation@CCollection@@QAEPADXZ
?SetMasterCHM@CCollection@@QAEXPBGG@Z
?GetSampleLocationW@CCollection@@QAEPBGXZ
?Save@CCollection@@QAEKXZ
?WriteFolder@CCollection@@AAEHPAPAVCFolder@@@Z
?GetRootFolder@CCollection@@QAEPAVCFolder@@XZ
?FindTitle@CCollection@@QAEPAVCTitle@@PBGG@Z
??0CFolder@@QAE@XZ
?GetColNo@CCollection@@QAEKXZ
?SetId@CLocation@@QAEXPBG@Z
?AddTitle@CCollection@@QAEPAVCTitle@@PBD0000GIPAVCLocation@@PAKH0@Z
?AllocCopyValue@CCollection@@AAEKPAVCParseXML@@PADPAPAD@Z
??1CTitle@@QAE@XZ
?MergeKeywords@CCollection@@QAEHPAD@Z
?SetVolume@CLocation@@QAEXPBD@Z
?AddChildFolder@CFolder@@QAEPAV1@PBDKPAKG@Z
?GetFirstChildFolder@CFolder@@QAEPAV1@XZ
?GetNextLocation@CLocation@@QAEPAV1@XZ
??0CCollection@@QAE@XZ
?SetSampleLocation@CCollection@@QAEXPBG@Z
?AddLocation@CCollection@@QAEPAVCLocation@@PBD000PAK@Z
?DeleteLocation@CCollection@@AAEKPAVCLocation@@@Z
?GetNextTitle@CTitle@@QAEPAV1@XZ
?ConfirmTitles@CCollection@@QAEXXZ
?GetParent@CFolder@@QAEPAV1@XZ

kernel32

VirtualAlloc
HeapWalk
AddLocalAlternateComputerNameA
EnumSystemLanguageGroupsW
EnterCriticalSection
GetCurrentThread
GetVolumeNameForVolumeMountPointW
lstrcatW
OpenJobObjectA
GetSystemInfo
LoadLibraryA
GetModuleHandleA
SetInformationJobObject
BindIoCompletionCallback
HeapUnlock
LZDone
FindResourceExA
GetFileAttributesExA
LoadModule
QueryMemoryResourceNotification
IsValidCodePage
TlsAlloc
MoveFileExW
GetConsoleOutputCP
GetFileAttributesW
Module32Next
GetSystemPowerStatus
FreeLibraryAndExitThread
GetMailslotInfo
UnmapViewOfFile
GetVolumeInformationW
GetGeoInfoA
GlobalGetAtomNameW
SetFirmwareEnvironmentVariableA
LZRead
WaitForMultipleObjectsEx
FreeUserPhysicalPages
WaitForDebugEvent

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9917a50e20caa55cff0d73baff9079e0

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

hhsetup

kernel32

Sections

.text Size: 28KB - Virtual size: 28KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 53KB

.rsrc Size: 1024B - Virtual size: 1024B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 28KB - Virtual size: 28KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 53KB

.rsrc
Size: 1024B - Virtual size: 1024B

.reloc
Size: 1KB - Virtual size: 1KB