bdae9487f08b60a358f26d082fdfb524be86a3554b2a84da07d207ebfda1a935

Sharing

Copy URL Twitter E-mail

General

Target

bdae9487f08b60a358f26d082fdfb524be86a3554b2a84da07d207ebfda1a935
Size

220KB
MD5

c4768889394e26689bee9db6b437aff6
SHA1

4715c5ab24c92e5e3f0463436210b4542c2a899d
SHA256

bdae9487f08b60a358f26d082fdfb524be86a3554b2a84da07d207ebfda1a935
SHA512

fbc06e72667893d8e2c50e09e7614bc312d5b95b1bb34c02a8d9237b740e4f6ec2eb9e151f9c416b5115ebb0a091216787b6e909f74c4a642106847e1c30c032
SSDEEP

6144:LCfvAtODGgvWp+Y4NJoh65/kDXLLufGFdf4:OGge7165/kDbL2Uu

Score

N/A

Malware Config

Signatures

Files

bdae9487f08b60a358f26d082fdfb524be86a3554b2a84da07d207ebfda1a935
.exe windows x86

b12d4ccca943e443b91feb25b7059399

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
SleepEx
DeleteCriticalSection
GetModuleHandleW
CreateFileW
GetModuleHandleW
FormatMessageW
CloseHandle
GetModuleHandleW
WriteFile
GetModuleHandleA
GetModuleHandleA
HeapFree
GetCurrentProcessId
VirtualAlloc
VirtualFree
GetModuleFileNameA
UnhandledExceptionFilter
GetModuleFileNameA
FormatMessageW
SetFilePointer
SetEvent
WideCharToMultiByte
FormatMessageW
SetLastError
CreateFileW
lstrlenW
GetCurrentProcessId
DeleteCriticalSection
CloseHandle

gdi32

ExtTextOutW
CreateBitmap
GetObjectW
GetTextMetricsW
GetObjectW
CreateSolidBrush
GetObjectW
ExtTextOutW
CreateCompatibleBitmap
SetBkColor
GetTextExtentPoint32W
SetTextColor
LineTo
TextOutW
StretchBlt
GetDeviceCaps
DeleteDC
GetStockObject
CreateCompatibleDC
DeleteDC
CreateCompatibleBitmap
CreateFontIndirectW
TextOutW
LineTo
LineTo
SelectObject
CreateFontIndirectW
MoveToEx
MoveToEx

user32

GetCaretPos
SetFocus
EndPaint
CheckDlgButton
GetWindowLongW
GetDC
IsDialogMessageW
SetWindowTextW
SendMessageA
GetKeyState
IsWindow
GetKeyState
ShowWindow
MessageBoxA
IsIconic
LoadStringA
GetMessageW
GetDlgItem
PostQuitMessage
PostMessageW
LoadAcceleratorsW
SetDlgItemTextW
SetDlgItemTextW
IsIconic
SetFocus
wsprintfW
GetParent
GetWindow
GetSystemMetrics
UpdateWindow

advapi32

InitializeAcl
InitializeAcl
RegCreateKeyExW
RegSetValueExA
RegQueryValueExW
CloseServiceHandle
RegEnumKeyExW
RegOpenKeyExW
RegSetValueExA
RegEnumValueW
GetLengthSid
RegOpenKeyExW
GetTokenInformation
RegEnumValueW
AllocateAndInitializeSid
RegQueryValueExA
AllocateAndInitializeSid
RegCreateKeyExA
GetLengthSid
InitializeAcl
RegCreateKeyExW
OpenProcessToken
AdjustTokenPrivileges
FreeSid
RegOpenKeyW
GetLengthSid
GetLengthSid
OpenThreadToken
RegOpenKeyW
CloseServiceHandle

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 848KB - Virtual size: 848KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 880KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b12d4ccca943e443b91feb25b7059399

Headers

File Characteristics

Imports

kernel32

gdi32

user32

advapi32

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 3KB - Virtual size: 4KB

.data Size: 848KB - Virtual size: 848KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 880KB

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 3KB - Virtual size: 4KB

.data
Size: 848KB - Virtual size: 848KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 880KB