8b724cb49ac185bfca4569fb733710e5261d2ddbb26b7c8e723cef27cc8dbd4aN

Sharing

Copy URL

Twitter E-mail

General

Target

8b724cb49ac185bfca4569fb733710e5261d2ddbb26b7c8e723cef27cc8dbd4aN
Size

740KB
MD5

09ccf93f2834c0116721733bec6af930
SHA1

63a6c413a8ac6bf649022730cc4212636b8e33e9
SHA256

8b724cb49ac185bfca4569fb733710e5261d2ddbb26b7c8e723cef27cc8dbd4a
SHA512

b1ba13a23e54897a82b462c6e6235624bc9321edb6b2ed0235f07558fb1b43351ab120c7122bbd94085af5e243dd4f5bd20a401a7a482569223759ae44a5a34b
SSDEEP

12288:r8jNTSo/mOr0l/GPBiYerq6PRca5/suPJEuRwhagbnBO2h5hAmsL8RgLDUkzESmY:zFpoBiYerq6PRc0PJEuRthTLoODtmLv0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b724cb49ac185bfca4569fb733710e5261d2ddbb26b7c8e723cef27cc8dbd4aN

Files

8b724cb49ac185bfca4569fb733710e5261d2ddbb26b7c8e723cef27cc8dbd4aN
.exe windows:5 windows x86 arch:x86

12a30b523ac71a3cbe9145c89400dd7f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\graphviz-ms\bin\smyrna.pdb

Imports

kernel32

GlobalAlloc
SetFilePointer
ReadFile
GlobalFree
WriteFile
GetFileSize
FindClose
FindNextFileA
DeleteFileA
SetFileAttributesA
CloseHandle
SetFileTime
GetFileTime
CreateFileA
FindFirstFileA
GetDriveTypeA
FreeLibrary
ReleaseMutex
ResumeThread
SetThreadPriority
GetLastError
WaitForSingleObject
CreateMutexA
CreateThread
GetCommandLineA
GetProcAddress
ExitProcess
LoadLibraryA
GetModuleHandleA
GetWindowsDirectoryA
GetModuleFileNameA
GetStringTypeW
FlushFileBuffers
RtlUnwind
GetVersion
HeapFree
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA

user32

MessageBoxA

Exports

Exports

attr_label_motion
btnTVCancel_clicked_cb
btnTVEdit_clicked_cb
btnTVFilterApply_clicked_cb
btnTVHideAll_clicked_cb
btnTVOK_clicked_cb
btnTVReverse_clicked_cb
btnTVSaveAs_clicked_cb
btnTVShowAll_clicked_cb
btnToolAddEdge_clicked
btnToolAddNode_clicked
btnToolCursor_clicked
btnToolDeleteEdge_clicked
btnToolDeleteNode_clicked
btnToolFindEdge_clicked
btnToolFindNode_clicked
btnToolFit_clicked
btnToolMove_clicked
btnToolZoomFit_clicked
btnToolZoomOut_clicked
cgbTVHighlighted_toggled_cb
cgbTVSelect_toggled_cb
cgbTVVisible_toggled_cb
color_change_request
gts_allow_floating_edges
gts_allow_floating_faces
gts_allow_floating_vertices
gts_binary_age
gts_interface_age
gts_major_version
gts_micro_version
gts_minor_version
mAbout
mAttributesSlot
mCircoSlot
mCloseSlot
mClusterPropertiesSlot
mCopySlot
mCutSlot
mDeleteSlot
mDotSlot
mEdgePropertiesSlot
mFdpSlot
mGraphPropertiesSlot
mHelp
mNeatoSlot
mNewClusterSlot
mNewEdgeSlot
mNewNodeSlot
mNodeFindSlot
mNodeListSlot
mNodePropertiesSlot
mOpenSlot
mOptionsSlot
mPasteSlot
mQuitSlot
mSaveAsSlot
mSaveSlot
mSfdpSlot
mShowCodeSlot
mShowConsoleSlot
mShowToolBoxSlot
mTestgvpr
mTopviewSettingsSlot
mTwopiSlot
on_attrAddBtn_clicked
on_attrApplyAllBtn_clicked
on_attrApplyBtn_clicked
on_attrProg_toggled
on_attrRB0_clicked
on_attrSearchBtn_clicked
on_btnActivateGraph_clicked
on_dlgSettings_close
on_gvprbuttonload_clicked
on_gvprbuttonsave_clicked
on_settingsApplyBtn_clicked
on_settingsCancelBtn_clicked
on_settingsOKBtn_clicked
on_txtAttr_changed
size_change_request

Sections

.text
Size: 548KB - Virtual size: 548KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 134KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

12a30b523ac71a3cbe9145c89400dd7f

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 548KB - Virtual size: 548KB

.rdata Size: 26KB - Virtual size: 25KB

.data Size: 134KB - Virtual size: 155KB

.rsrc Size: 1024B - Virtual size: 760B

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 8KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 548KB - Virtual size: 548KB

.rdata
Size: 26KB - Virtual size: 25KB

.data
Size: 134KB - Virtual size: 155KB

.rsrc
Size: 1024B - Virtual size: 760B

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 8KB

.reloc
Size: 2KB - Virtual size: 1KB