aa1084543f0b748a6b9018251c1b5a899d3396834efcb7480c769cb0a178b8b0

Sharing

Copy URL Twitter E-mail

General

Target

aa1084543f0b748a6b9018251c1b5a899d3396834efcb7480c769cb0a178b8b0
Size

120KB
MD5

c480385672826b4fcb3676eab6673b56
SHA1

f775d296d5a409090d9876eb4cf8d20b74e4524b
SHA256

aa1084543f0b748a6b9018251c1b5a899d3396834efcb7480c769cb0a178b8b0
SHA512

2ab9c5849a80f3f0bf4fff0b7764f72cda3969bf8a3391d641b9554ed06dae4fd812e5e3f3d651c2254092ea027701285c5a2dcb14092707ef4c245727578bc1
SSDEEP

768:ro0a3+VKfSc01y/XjYGCBTmsA6L3IVPmq8yZbV/wV9qfefLBlfmPsRE3kHr8cAYC:ro0a3+ejzYhTW6gw1dfN0pHU0/Z96Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa1084543f0b748a6b9018251c1b5a899d3396834efcb7480c769cb0a178b8b0

Files

aa1084543f0b748a6b9018251c1b5a899d3396834efcb7480c769cb0a178b8b0
.exe windows:4 windows x86 arch:x86

23a7b99e7590b27b5f5ee08517481e86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

cygwin1

__main
_fopen64
_impure_ptr
abort
atof
atoi
calloc
clock
cygwin_internal
dll_crt0__FP11per_process
exit
fclose
fgets
free
malloc
printf
pthread_atfork
realloc
sprintf
strncmp
strncpy
_fopen64
sqrtf

glu32

gluNewQuadric
gluPerspective
gluSphere

glut32

glutAddMenuEntry
glutAttachMenu
glutBitmapCharacter
glutCreateMenu
glutCreateWindow
glutDisplayFunc
glutGetModifiers
glutIdleFunc
glutInitDisplayMode
glutInitWindowPosition
glutInitWindowSize
glutKeyboardFunc
glutMainLoop
glutMotionFunc
glutMouseFunc
glutPostRedisplay
glutReshapeFunc
glutSwapBuffers

kernel32

AddAtomA
FindAtomA
GetAtomNameA
GetModuleHandleA

opengl32

glBegin
glCallList
glClear
glClearColor
glColor3f
glCullFace
glDepthRange
glDisable
glEnable
glEnd
glEndList
glFinish
glLightfv
glLineWidth
glLoadIdentity
glMaterialfv
glMatrixMode
glNewList
glNormal3f
glPopAttrib
glPopMatrix
glPushAttrib
glPushMatrix
glRasterPos4f
glRotatef
glShadeModel
glTranslatef
glVertex3f
glViewport

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 368B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.stab
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.stabstr
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23a7b99e7590b27b5f5ee08517481e86

Headers

File Characteristics

Imports

cygwin1

glu32

glut32

kernel32

opengl32

Sections

.text Size: 35KB - Virtual size: 35KB

.data Size: 17KB - Virtual size: 17KB

.rdata Size: 2KB - Virtual size: 1KB

.bss Size: - Virtual size: 368B

.idata Size: 2KB - Virtual size: 2KB

.stab Size: 22KB - Virtual size: 21KB

.stabstr Size: 16KB - Virtual size: 16KB

.text
Size: 35KB - Virtual size: 35KB

.data
Size: 17KB - Virtual size: 17KB

.rdata
Size: 2KB - Virtual size: 1KB

.bss
Size: - Virtual size: 368B

.idata
Size: 2KB - Virtual size: 2KB

.stab
Size: 22KB - Virtual size: 21KB

.stabstr
Size: 16KB - Virtual size: 16KB