04bcb650fc506d4abc64ee6aaa5ccd0bb1a0b2dabfec7938cc8c69f2cebc22aa

Sharing

Copy URL Twitter E-mail

General

Target

04bcb650fc506d4abc64ee6aaa5ccd0bb1a0b2dabfec7938cc8c69f2cebc22aa
Size

2.3MB
MD5

4347e9db2b9c5ae05c9bd87e26208ddc
SHA1

7a50a7e4d2d0f5746734c640c6d4d0c25524b8a2
SHA256

04bcb650fc506d4abc64ee6aaa5ccd0bb1a0b2dabfec7938cc8c69f2cebc22aa
SHA512

c2a95335333eafc0ff43ddfc8692355d696e8cf21d685b457b286408dd036d588fd859847aeb01e06d9c5326a8b3b4bae6912e7be7bc1a7de4414554ef321c5b
SSDEEP

49152:7dIJla9ySrevawVfvU9Qy60mdJXHisVAETQOSbqVa9OWDSLWeq:5IJliySrDwVUOxddTfMdO2Slq

Score

N/A

Malware Config

Signatures

Files

04bcb650fc506d4abc64ee6aaa5ccd0bb1a0b2dabfec7938cc8c69f2cebc22aa
.exe windows x86

b4c238a8f8c8c11ca114d9ceeeed9eef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
GetFileTime
RemoveDirectoryA
GetPrivateProfileStructA
SetFilePointerEx
ReadConsoleA
GetExitCodeProcess
GetNumberOfConsoleFonts
GetProfileSectionA
WaitNamedPipeA
GetSystemRegistryQuota
GetConsoleMode
GlobalLock
GetConsoleFontInfo
OpenWaitableTimerA
GetConsoleCP
WriteFileGather
FindVolumeMountPointClose
DuplicateConsoleHandle
GlobalFree
GetFileAttributesExA
ReadConsoleInputA
SetLocaleInfoA
IsBadCodePtr
GetDefaultCommConfigA
PeekConsoleInputA
FindNextVolumeMountPointW
GetModuleHandleA
GetModuleHandleA
GetFileAttributesA
GetProcessVersion
GetCommandLineA
GetCurrentProcessId
SetUnhandledExceptionFilter
GetCurrentConsoleFont
ReleaseMutex
SetCurrentDirectoryA
IsBadStringPtrA
GetProcessIoCounters
WriteConsoleOutputCharacterA
GetStartupInfoA
GetCurrencyFormatA
SetConsoleTextAttribute
ReadConsoleOutputAttribute
GetCompressedFileSizeA
GetFileAttributesExA
FindNextFileA
FlushViewOfFile
CreateFileMappingA
OpenMutexA
GetPrivateProfileStringA
GetFileSizeEx
OpenJobObjectA
SetInformationJobObject
SetConsoleMode
HeapFree
SetTapePosition
GetDriveTypeA
IsBadWritePtr
GetThreadSelectorEntry
MapUserPhysicalPages
ResetEvent
GetConsoleInputExeNameA
GlobalGetAtomNameA
WriteConsoleInputA
WinExec
UpdateResourceA
EnumResourceLanguagesA
SetProcessPriorityBoost
OpenSemaphoreA
GetDiskFreeSpaceExA
GetCurrentDirectoryA
WriteConsoleOutputCharacterA
GetConsoleAliasesLengthA
GetProcessHeaps
SetFileShortNameA
GetCommandLineA
GetComputerNameA
ReadFileScatter
ReadFileEx
QueryPerformanceCounter
WritePrivateProfileSectionA
SetThreadPriority
WriteProcessMemory
DefineDosDeviceA
GetCPInfoExA
ReadConsoleA
CreateFileMappingA
LZDone
SetConsoleInputExeNameA
GetSystemTime
GetExitCodeThread
GetFullPathNameA
AddAtomA
_hwrite
UnlockFileEx
SetMailslotInfo
GetConsoleWindow
DebugBreak
DeleteTimerQueueEx
GetThreadPriorityBoost
CreateMutexA
ClearCommBreak
GlobalDeleteAtom
TransactNamedPipe
GetProcessTimes
GetCurrentThreadId
GetFileType
GetConsoleWindow
GetCurrentDirectoryA
SetTapeParameters
GetStringTypeA
ClearCommError
GlobalAddAtomA
HeapFree
SetFilePointer
GetLocaleInfoA
PrepareTape
lstrcpyn
CompareStringA
SetHandleContext
SetComputerNameExA
UnmapViewOfFile
BuildCommDCBAndTimeoutsA
OpenFileMappingA
GetQueuedCompletionStatus
LockResource
GetUserDefaultLangID
CreateSemaphoreA
LocalHandle
GetLongPathNameA
FormatMessageA
GetFileAttributesExA
SetConsoleLocalEUDC
FindFirstVolumeMountPointA
GetFileInformationByHandle
OpenJobObjectA
GetVolumePathNameA
GetExitCodeProcess
GetThreadContext
FindNextVolumeMountPointA
OpenEventA
HeapDestroy
SetThreadAffinityMask
GetConsoleTitleA
CancelWaitableTimer
RaiseException
GlobalFree
GlobalFindAtomA
UpdateResourceA
GetOEMCP
HeapSetInformation
ShowConsoleCursor
CreateTimerQueueTimer
SetProcessWorkingSetSize
lstrcmpiA
SetEvent
SetConsoleNumberOfCommandsA
TransmitCommChar
GetProcessHeap
GetSystemWindowsDirectoryA
LoadLibraryExW
VerifyVersionInfoA
GetModuleFileNameA
OpenThread
GetConsoleCharType
FindNextVolumeMountPointA
FindResourceExA
IsDebuggerPresent
GetEnvironmentStringsA
OpenEventA
ExpandEnvironmentStringsA
GetTickCount
OpenProcess
GetSystemDirectoryA
GetVersionExA
QueueUserAPC
WriteProfileStringA
QueryPerformanceFrequency
EndUpdateResourceA
VirtualAllocEx
GetConsoleCursorMode
AddConsoleAliasA
HeapSize
SignalObjectAndWait
WaitForMultipleObjects
GetEnvironmentVariableA
OpenFileMappingA
LocalShrink
CopyFileExA
OpenFile
GetCurrentActCtx
GetConsoleWindow
GetModuleFileNameA
SetSystemTimeAdjustment
GetConsoleTitleA
GetCommMask
WritePrivateProfileStringA
LCMapStringA
lstrcpyA
DisconnectNamedPipe
SetFileApisToOEM
GetOEMCP
GetLocalTime
LoadLibraryExA

user32

MapDialogRect
GetKeyboardLayout
AnyPopup
DefDlgProcA
IsChild
GetDC
SetDebugErrorLevel
GetGuiResources
GetCaretPos
AlignRects
ChildWindowFromPoint
OpenIcon
RedrawWindow
GetWindowTextLengthA
PackDDElParam
CascadeWindows
SetMenuInfo
DlgDirSelectComboBoxExA
EqualRect
IsMenu
GetMessageTime
CallWindowProcA
UnregisterDeviceNotification
GetReasonTitleFromReasonCode
CountClipboardFormats
OpenWindowStationA
CreateIconIndirect
CreateMDIWindowA
PackDDElParam
UnhookWinEvent
CharPrevExA
SetDeskWallpaper
GetDCEx
EndPaint
EnumChildWindows
CheckRadioButton
HiliteMenuItem
MessageBeep
CharLowerBuffA
EnumPropsExA
IsCharUpperA
RegisterSystemThread
GetMessageTime
EnumChildWindows
ShowCursor
DrawCaption
DrawTextExA
GetKeyboardLayoutNameA
GetClipboardViewer
TranslateMessage
RegisterDeviceNotificationA
SetWindowsHookExA
IsCharAlphaNumericA
EmptyClipboard
DrawStateA
GetMenuStringA
GetClipboardOwner
RegisterRawInputDevices
OpenWindowStationA
DeviceEventWorker
AllowForegroundActivation
CheckRadioButton
SetMenuItemBitmaps
EnumChildWindows
SetMenuItemBitmaps
IsDialogMessageA
GetWindowRect
CharUpperBuffA
InsertMenuA
RegisterServicesProcess
GetMenuStringA
EnableWindow
SetSystemMenu
SetWindowPlacement
CreatePopupMenu
SetPropA
DialogBoxIndirectParamA
DrawTextExA
OemToCharBuffW
EnumDisplaySettingsExA
MapVirtualKeyA
CharPrevA
ShowCaret
CreateDialogIndirectParamA
CloseWindow
GetWindowRgnBox
DisplayExitWindowsWarnings
IsHungAppWindow
GetCaretPos
SetWindowPos
DispatchMessageA
GetMessageTime
BroadcastSystemMessageA
UpdatePerUserSystemParameters
DrawFrameControl
MessageBoxExA
GetAppCompatFlags
GetScrollPos
GetCursorFrameInfo
LoadStringA
GetLayeredWindowAttributes
ReleaseDC
GetWindowLongA
SetPropA
GetClipboardOwner
SetThreadDesktop
UnregisterDeviceNotification
DragDetect
OemToCharBuffW
GetKeyState
AnyPopup
GetProcessWindowStation
GetDlgCtrlID
GetWindowThreadProcessId
LoadMenuIndirectA
DefFrameProcA
OemToCharBuffA
WaitForInputIdle
GetCapture
PrivateExtractIconsA
PeekMessageA
ReleaseDC
LoadCursorA
SetRectEmpty
SetCaretBlinkTime
LoadRemoteFonts
CreateDialogIndirectParamA
RegisterClassA
DragObject
RegisterUserApiHook
SetSysColorsTemp
GetKeyNameTextA
CharUpperBuffA
ToAsciiEx
SetMenuItemInfoA
CheckDlgButton
ChangeDisplaySettingsExW
CreateDialogIndirectParamA
OpenInputDesktop
SetInternalWindowPos
SetMenuDefaultItem
GetKeyboardLayoutNameA
ModifyMenuA
SetDebugErrorLevel
SetCursorContents
SetClassLongA
SetDlgItemInt
TrackPopupMenu
CallMsgFilterA
CreateDesktopA
RemoveMenu
DestroyAcceleratorTable
EnumDisplayMonitors
DrawCaptionTempA
SwitchToThisWindow
CharLowerA
RegisterTasklist
SetPropA
ShowWindowAsync
IsCharLowerA
EnumPropsExW
PrivateExtractIconExA
GetTopWindow
GetKeyNameTextA
LoadKeyboardLayoutA
GetDialogBaseUnits
CascadeChildWindows
SetParent
GetScrollInfo
UnpackDDElParam
GetWindowLongA
RegisterClassExW
LoadAcceleratorsA
AllowSetForegroundWindow
LoadMenuIndirectA
SetSysColors
GetWindowModuleFileNameA
SetCaretPos
GetAltTabInfoA
RegisterShellHookWindow
EndDeferWindowPos
OpenInputDesktop
SetMenuItemBitmaps
OemToCharA
SetActiveWindow
SetProcessDefaultLayout
SwitchToThisWindow
CharUpperBuffW
EnumPropsExW
GetKeyboardType
RegisterClipboardFormatA
TrackPopupMenu
GetClipboardSequenceNumber
TabbedTextOutA
LoadRemoteFonts
CheckMenuRadioItem
GetDCEx
RegisterServicesProcess
SetWindowLongA
InvalidateRgn
GetUserObjectInformationA
InvalidateRgn

tapi32

lineDrop

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1.2MB - Virtual size: 19.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4c238a8f8c8c11ca114d9ceeeed9eef

Headers

File Characteristics

Imports

kernel32

user32

tapi32

Sections

.text Size: 1.0MB - Virtual size: 1.0MB

.data Size: 1.2MB - Virtual size: 19.4MB

.edata Size: - Virtual size: 2KB

.idata Size: 11KB - Virtual size: 10KB

.rsrc Size: 71KB - Virtual size: 71KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 1.0MB - Virtual size: 1.0MB

.data
Size: 1.2MB - Virtual size: 19.4MB

.edata
Size: - Virtual size: 2KB

.idata
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 71KB - Virtual size: 71KB

.reloc
Size: 2KB - Virtual size: 1KB