d2b15d32068b39eecca72fe6c1ceb3c002ed87e655da22f7e1a1fd42ecf166a4N

Sharing

Copy URL Twitter E-mail

General

Target

d2b15d32068b39eecca72fe6c1ceb3c002ed87e655da22f7e1a1fd42ecf166a4N
Size

127KB
MD5

ef2814668c1fc5bed7ba03bd3ead9330
SHA1

e3da29a9fbd8dc10cb42fbac336f7c7bab52edf1
SHA256

d2b15d32068b39eecca72fe6c1ceb3c002ed87e655da22f7e1a1fd42ecf166a4
SHA512

e19965f3adc5a6923bd047460c5d73c9400124989cbb32f8d1601bb17b49e243512697173ee82b46951fe3d55f034d0a18bf7568f2e2098607140e4496653971
SSDEEP

1536:hybbyowllfya2Hbd3KtDdhN+YcYItYr2SfpnFybwZsn3lr7yjFD0p7z4WNjmvJlr:hybbxSga27de3we1pwwZY357zz4WNqJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2b15d32068b39eecca72fe6c1ceb3c002ed87e655da22f7e1a1fd42ecf166a4N

Files

d2b15d32068b39eecca72fe6c1ceb3c002ed87e655da22f7e1a1fd42ecf166a4N
.exe windows:4 windows x86 arch:x86

741c74f06ecc2d4b4a1ad2195f60f1cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
WriteConsoleW
BackupRead
GetStringTypeW
GetTempPathW
VirtualAlloc
FreeLibrary
_lclose
GetProcAddress
VirtualProtect
GetCurrentProcess
LoadLibraryW
VirtualFree
GetLastError
OutputDebugStringA
ExitThread
lstrlenA
GetModuleHandleA
AttachConsole
FindFirstFileW
GetWindowsDirectoryA
OutputDebugStringA

msvcrt

_purecall
_snwprintf
_controlfp
_adjust_fdiv
memset
_c_exit
_wtol
__winitenv
wcslen
swprintf
_vsnprintf
strncpy
_iob
_except_handler3
wcscpy
__p__commode
__CxxFrameHandler
swscanf
wcscmp
_exit
wcscat
isalpha
wcschr
_ftol
__dllonexit
memcpy
__p__fmode
malloc
__initenv
_wcmdln
_cexit
free

opengl32

glColor4d
GlmfBeginGlsBlock
glColor4i
glStencilMask
glFogfv
glColor4f
glTexCoord2dv
glTexCoord2d
wglShareLists
glColor3ui

shell32

SHGetFolderPathW
SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW

user32

ScreenToClient
CopyRect
DialogBoxParamA
LoadMenuW
SetScrollPos
GetParent
SendMessageW
CheckDlgButton
UnregisterClassW
SetCapture
BeginPaint
RegisterClassA
LoadImageW
GetProcessWindowStation
ValidateRect
GetMenuItemCount
LoadCursorA
ClientToScreen
MapWindowPoints
ReleaseCapture
GetCursorPos
LoadCursorW
DispatchMessageW
ReleaseDC
DestroyWindow
SendMessageA
wsprintfW
IsWindow

Exports

Exports

KmmbTobyhhTytqsGf
BxsUoytkpPsl
TanudMqnek

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

741c74f06ecc2d4b4a1ad2195f60f1cb

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

opengl32

shell32

user32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 118B

.data Size: 117KB - Virtual size: 117KB

.reloc Size: 512B - Virtual size: 68B

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 118B

.data
Size: 117KB - Virtual size: 117KB

.reloc
Size: 512B - Virtual size: 68B

.rsrc
Size: 3KB - Virtual size: 2KB