bd2c20945bbcd1d0e7965e1c3e95e2448814ac5028aaa75f1da98ba5edf657b9

Sharing

Copy URL

Twitter E-mail

General

Target

bd2c20945bbcd1d0e7965e1c3e95e2448814ac5028aaa75f1da98ba5edf657b9
Size

445KB
MD5

09208485995aa899687ee2159f60e0b3
SHA1

e0b604be67c93012bee4af45273a5ae4cf49ab4a
SHA256

bd2c20945bbcd1d0e7965e1c3e95e2448814ac5028aaa75f1da98ba5edf657b9
SHA512

4d88719fd7b29dda0441ddeb353a630dfc379e79f69a7be1cf3b93d8ed02269facc14f18bbb8337bd7e474eb836780449082351c0e47bc71e7171c54f70931c5
SSDEEP

12288:1eNBfolCqUoGtf7GSI07qTGc1A35avU2qxetswe5lB:Z+oz1nvD7teT

Score

N/A

Malware Config

Signatures

Files

bd2c20945bbcd1d0e7965e1c3e95e2448814ac5028aaa75f1da98ba5edf657b9
.exe windows x86

3e4154f064d65570d19f902e689a910d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ReplaceTextA
FindTextW
GetSaveFileNameW
ChooseColorW
FindTextA
PrintDlgA
ChooseColorA
ChooseFontW
GetOpenFileNameA
PrintDlgW
ChooseFontA

shell32

ShellExecuteW
SHEmptyRecycleBinA
SHFileOperation
SHGetPathFromIDListW
DragQueryFile
RealShellExecuteExA
SheSetCurDrive
SHGetFileInfoA
DragAcceptFiles
CheckEscapesW
SHGetSpecialFolderPathW
SHInvokePrinterCommandA

gdi32

GetViewportOrgEx
CreatePenIndirect
Escape
PathToRegion
GetICMProfileA
PolyBezier
GetTextExtentExPointA
SetICMProfileW
GetSystemPaletteUse
CopyMetaFileW
CreateEnhMetaFileW
SetFontEnumeration
SetROP2

wininet

InternetSetCookieA
InternetTimeFromSystemTimeW
InternetSecurityProtocolToStringA
InternetCheckConnectionW
FindNextUrlCacheEntryW
InternetConfirmZoneCrossingW
FtpCreateDirectoryA
InternetCanonicalizeUrlA
FreeUrlCacheSpaceA
CommitUrlCacheEntryA
InternetReadFile
InternetSetOptionA
InternetSetDialStateW
InternetGetConnectedState
FtpCreateDirectoryW
InternetSetDialStateA
FtpSetCurrentDirectoryA
DeleteUrlCacheContainerA
InternetFindNextFileW
RegisterUrlCacheNotification
FindFirstUrlCacheEntryW

kernel32

VirtualQuery
SetLastError
HeapFree
GetACP
FreeEnvironmentStringsW
WriteFile
TerminateProcess
GetCurrentThread
GetTimeFormatA
GetCPInfo
IsValidCodePage
GetTimeZoneInformation
EnumSystemLocalesA
CompareStringW
HeapCreate
UnhandledExceptionFilter
GetProcAddress
FreeEnvironmentStringsA
IsValidLocale
GetStdHandle
LeaveCriticalSection
HeapDestroy
GetFileType
IsDebuggerPresent
GetDateFormatA
GetEnvironmentStrings
HeapSize
QueryPerformanceCounter
GetCurrentProcess
GetTickCount
ExitProcess
VirtualFree
GetStringTypeW
GetModuleHandleA
SetEnvironmentVariableA
EnterCriticalSection
TlsFree
GetLastError
HeapAlloc
CompareStringA
SetConsoleCtrlHandler
GetCommandLineA
GetLocaleInfoW
HeapReAlloc
Sleep
TlsGetValue
GetEnvironmentStringsW
GetVersionExA
LCMapStringW
GetOEMCP
MultiByteToWideChar
FreeLibrary
InitializeCriticalSection
WideCharToMultiByte
LoadLibraryA
GetStartupInfoA
GetCurrentProcessId
TlsSetValue
GetProcessHeap
DeleteCriticalSection
GetModuleFileNameA
LocalLock
EnumCalendarInfoExA
GetCurrentThreadId
InterlockedExchange
RtlUnwind
InterlockedDecrement
LCMapStringA
GetSystemTimeAsFileTime
GetLocaleInfoA
VirtualAlloc
SetUnhandledExceptionFilter
GetStringTypeA
SetHandleCount
TlsAlloc
InterlockedIncrement
GetUserDefaultLCID

advapi32

LookupPrivilegeDisplayNameW
RegCreateKeyA
CryptGetProvParam
RegOpenKeyExW
RegNotifyChangeKeyValue
CryptEnumProviderTypesA
RegOpenKeyExA
RegSetValueExW
CreateServiceW
RegSaveKeyA

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 275KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3e4154f064d65570d19f902e689a910d

Headers

File Characteristics

Imports

comdlg32

shell32

gdi32

wininet

kernel32

advapi32

Sections

.text Size: 160KB - Virtual size: 159KB

.data Size: 275KB - Virtual size: 275KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 160KB - Virtual size: 159KB

.data
Size: 275KB - Virtual size: 275KB

.rsrc
Size: 8KB - Virtual size: 8KB