b2c90c90c3f07d08df3cb355591bc49754622dcc7e767e10de18596998a9cbbd

Sharing

Copy URL

Twitter E-mail

General

Target

b2c90c90c3f07d08df3cb355591bc49754622dcc7e767e10de18596998a9cbbd
Size

248KB
MD5

99f763836aa9ce5b18d107dcb2d511a2
SHA1

5ac1c7dd7d1302c372f50c64baf90dc598d90186
SHA256

b2c90c90c3f07d08df3cb355591bc49754622dcc7e767e10de18596998a9cbbd
SHA512

002e927751edbd28b7d67409c384d61989504a3c0a0433685c652bb724b5894b6b3faf4ad60298e36c774dd0f51d1c44108eef796090a94958d975e4388f63d8
SSDEEP

6144:qDu37QmMYU75zFDaxXpWHlJu73/Va424BFvhtkX:qObk5MkHlJu76

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2c90c90c3f07d08df3cb355591bc49754622dcc7e767e10de18596998a9cbbd

Files

b2c90c90c3f07d08df3cb355591bc49754622dcc7e767e10de18596998a9cbbd
.dll windows:4 windows x86 arch:x86

1cb78fa4e0557e210923c9fb12fd5a42

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
LoadLibraryA
GetProcAddress
FreeLibrary
GetVersionExA
VirtualFree
LocalFree
VirtualAlloc
GetLastError
FormatMessageA
LeaveCriticalSection
ExitProcess
InitializeCriticalSection
CreateFileA
FlushFileBuffers
SetStdHandle
SetFilePointer
GetStringTypeW
GetStringTypeA
SetEnvironmentVariableA
CompareStringW
CompareStringA
ReadFile
SetEndOfFile
GetOEMCP
HeapAlloc
HeapFree
InterlockedDecrement
InterlockedIncrement
GetACP
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetCommandLineA
GetVersion
GetModuleHandleA
RaiseException
GetModuleFileNameA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
HeapReAlloc
TlsFree
DeleteCriticalSection
EnterCriticalSection
SetLastError
TlsGetValue
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
WriteFile
CloseHandle
GetCurrentThreadId
TlsSetValue
TlsAlloc
GetFileType
GetStdHandle
TerminateProcess
GetCurrentProcess
SetHandleCount
GetCPInfo
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW

user32

DestroyWindow
SetFocus
SetForegroundWindow
CreateWindowExA
AdjustWindowRect
RegisterClassA
LoadCursorA
LoadIconA
ChangeDisplaySettingsA
ReleaseDC
GetDC
UnregisterClassA
ShowWindow

gdi32

DescribePixelFormat
ChoosePixelFormat
SetPixelFormat
GetDeviceCaps

h2common

Matricies3FromDirAndUp
RotatePointAboutLocalOrigin
vec3_origin
Clamp
RotatePointAroundVector
VectorNormalize
Vec3Normalize
Matrix3MultByVec3
CrossProduct
Matrix3FromAngles
Matrix3MultByMatrix3
Com_sprintf
AngleVectors
HACK_Pitch_Adjust
TransformPoint
DirAndUpFromAngles

quake2

Cvar_Set
Com_DPrintf
Cvar_Get
Sys_Error
Com_Printf
Cvar_SetValue

Exports

Exports

GetRefAPI

Sections

.text
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 946KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1cb78fa4e0557e210923c9fb12fd5a42

Headers

File Characteristics

Imports

kernel32

user32

gdi32

h2common

quake2

Exports

Exports

Sections

.text Size: 156KB - Virtual size: 154KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 56KB - Virtual size: 946KB

.reloc Size: 24KB - Virtual size: 22KB

.text
Size: 156KB - Virtual size: 154KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 56KB - Virtual size: 946KB

.reloc
Size: 24KB - Virtual size: 22KB