bdb8856b82edfd82e23c07167f2f1287ebd7d49adbad89f6b82bd09699e19efb

Sharing

Copy URL Twitter E-mail

General

Target

bdb8856b82edfd82e23c07167f2f1287ebd7d49adbad89f6b82bd09699e19efb
Size

216KB
MD5

4abf8922531524dc84326329e2e778d3
SHA1

2c5f636660e1302931067d646c0e7e546b7e3de2
SHA256

bdb8856b82edfd82e23c07167f2f1287ebd7d49adbad89f6b82bd09699e19efb
SHA512

f4bd209b0e99bb154944daaa43fa1e5065e50c9e502181f5fed4e0b4d253c57bb5bab15305950fad8358c38861a7fee71965657a77e2e210df8d5863ed5ca403
SSDEEP

6144:D9e9ck2opFJ5i7MDnVUNyLrHwtFz4bu4LzIo7e6P:Ze9xFJ5i8UNyLEtFcq4Xk6P

Score

N/A

Malware Config

Signatures

Files

bdb8856b82edfd82e23c07167f2f1287ebd7d49adbad89f6b82bd09699e19efb
.exe windows x86

6fe943f1d9636aeeecaf674ce774c128

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcstol
time
strncmp

user32

RegisterWindowMessageA
MapVirtualKeyA
RemoveMenu
SendMessageA
LoadStringA
LoadKeyboardLayoutA
PeekMessageW
ReleaseDC
RedrawWindow
ScreenToClient
PostMessageA
ReleaseCapture
SendMessageW
PeekMessageA
LoadCursorA
RemovePropA
OpenClipboard
PostQuitMessage
OffsetRect
PtInRect
LoadBitmapA
RegisterClipboardFormatA
OemToCharA
RegisterClassA
MessageBoxA
MapWindowPoints
MessageBeep
ScrollWindow
LoadIconA
SetActiveWindow

advapi32

RegOpenKeyA
RegEnumValueA

gdi32

CreatePenIndirect
CreateFontIndirectA
GetBitmapBits
CreatePalette
CreateDIBitmap

shell32

SHGetFolderPathA
SHGetFileInfoA

ole32

OleCreateStaticFromData
CLSIDFromString
ReleaseStgMedium
CoCreateFreeThreadedMarshaler
MkParseDisplayName
CoCreateInstanceEx

kernel32

GetOEMCP
MulDiv
lstrcpyA
GetModuleHandleW
WideCharToMultiByte
lstrcpynA
SizeofResource
WaitForSingleObject
MoveFileA
LoadLibraryA
LocalFree
VirtualQuery
GetLastError
WriteFile
lstrlenA
GetProcAddress
ExitThread
GlobalAlloc
GetACP
VirtualFree
GetVersionExA
lstrcmpiA
GetCommandLineA
MoveFileExA
VirtualAlloc
HeapDestroy
IsBadReadPtr
LocalAlloc
LocalReAlloc
ExitProcess
lstrcmpA
lstrcatA
GetModuleHandleA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

shlwapi

PathIsDirectoryA
SHStrDupA
PathGetCharTypeA
SHEnumValueA
SHDeleteKeyA
SHQueryValueExA
SHSetValueA

comctl32

ImageList_Draw
ImageList_Read
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_Remove

oleaut32

VariantCopyInd
SysAllocStringLen
OleLoadPicture
GetErrorInfo
RegisterTypeLib
SafeArrayCreate
SysReAllocStringLen
SysStringLen
VariantChangeType
SafeArrayPtrOfIndex

Sections

CODE
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 593B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc3
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc7
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc2
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc9
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6fe943f1d9636aeeecaf674ce774c128

Headers

File Characteristics

Imports

msvcrt

user32

advapi32

gdi32

shell32

ole32

kernel32

version

shlwapi

comctl32

oleaut32

Sections

CODE Size: 74KB - Virtual size: 73KB

.data Size: 1024B - Virtual size: 593B

.rsrc3 Size: 2KB - Virtual size: 1KB

.rsrc7 Size: 1024B - Virtual size: 776B

.rsrc6 Size: 1KB - Virtual size: 1KB

.rsrc2 Size: 5KB - Virtual size: 4KB

.rsrc9 Size: 130KB - Virtual size: 129KB

.rsrc Size: 1024B - Virtual size: 976B

CODE
Size: 74KB - Virtual size: 73KB

.data
Size: 1024B - Virtual size: 593B

.rsrc3
Size: 2KB - Virtual size: 1KB

.rsrc7
Size: 1024B - Virtual size: 776B

.rsrc6
Size: 1KB - Virtual size: 1KB

.rsrc2
Size: 5KB - Virtual size: 4KB

.rsrc9
Size: 130KB - Virtual size: 129KB

.rsrc
Size: 1024B - Virtual size: 976B