e7a1c5a81c10882f3a977ef3156a406bfa56950addd373a86f4fcc61e7783dd5

Sharing

Copy URL Twitter E-mail

General

Target

e7a1c5a81c10882f3a977ef3156a406bfa56950addd373a86f4fcc61e7783dd5
Size

1.3MB
MD5

480544e64039f710ee4d7c515a5e49b0
SHA1

ada8278101c1fb641ca8f5365a3951d7d7e4ef5f
SHA256

e7a1c5a81c10882f3a977ef3156a406bfa56950addd373a86f4fcc61e7783dd5
SHA512

326912c12d7a1cfe1de6e76341c387821e809861bd78ec26aea68c6c67fc9fae31430894b78c9d24a0bd405f4d43f81c3e1c69c7abc834acc27cf9d77d38f0b1
SSDEEP

24576:xUl8U9Sv4t0WhD6vQr317sHlTXON8SUC:ulBnDDB4j

Score

N/A

Malware Config

Signatures

Files

e7a1c5a81c10882f3a977ef3156a406bfa56950addd373a86f4fcc61e7783dd5
.exe windows x86

f932d12798f7f6949568c59b34986bcb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
TerminateThread
CreateEventA
WaitForSingleObject
SetEvent
GetDriveTypeA
DeviceIoControl
ResetEvent
QueryPerformanceFrequency
QueryPerformanceCounter
OpenFile
VirtualLock
VirtualProtect
GetSystemTimeAsFileTime
SetEnvironmentVariableW
FileTimeToSystemTime
FileTimeToLocalFileTime
FreeLibrary
LoadLibraryA
GetProcAddress
FindResourceA
ExitProcess
LocalFree
SetEndOfFile
CreateFileA
SetStdHandle
SetEnvironmentVariableA
LoadResource
LockResource
VirtualAlloc
GetModuleHandleA
GetCommandLineA
SetThreadPriority
SetConsoleTitleA
AllocConsole
GetModuleFileNameA
GetTempPathA
GetSystemDirectoryA
GetWindowsDirectoryA
GetVersionExA
FindFirstFileA
FindClose
FindNextFileA
GetFileAttributesA
DeleteFileA
SetFileAttributesA
CopyFileA
SetCurrentDirectoryA
GetCurrentDirectoryA
CreateDirectoryA
RemoveDirectoryA
Sleep
MulDiv
InterlockedDecrement
MultiByteToWideChar
CreateProcessA
CloseHandle
CreatePipe
GetLastError
ReadFile
WriteFile
PeekNamedPipe
GetCurrentThreadId
EnterCriticalSection
InitializeCriticalSection
InterlockedExchange
DeleteCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
GetVersion
InterlockedIncrement
RtlUnwind
TerminateProcess
GetCurrentProcess
IsBadReadPtr
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RaiseException
HeapReAlloc
HeapSize
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
FlushFileBuffers
SetFilePointer
SetUnhandledExceptionFilter
GetCPInfo
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
IsBadCodePtr
CompareStringA
CompareStringW

user32

SetCapture
RegisterClassA
LoadIconA
IsIconic
PostThreadMessageA
SetWindowLongA
DialogBoxParamA
SendDlgItemMessageA
SetForegroundWindow
GetDlgItem
GetWindowTextA
SetTimer
EndDialog
ChangeDisplaySettingsA
ReleaseDC
CreatePopupMenu
EnableWindow
MoveWindow
LoadCursorA
SetCursor
BeginPaint
DrawEdge
EndPaint
ReleaseCapture
FillRect
InvalidateRect
ShowWindow
SetWindowTextA
SetActiveWindow
SetMenu
DestroyMenu
GetMenu
AdjustWindowRect
CreateMenu
CharLowerBuffA
AppendMenuA
PostMessageA
DestroyWindow
GetScrollInfo
SetScrollPos
IsWindowEnabled
SetScrollInfo
GetFocus
GetScrollPos
CallWindowProcA
CreateWindowExA
GetClientRect
GetDesktopWindow
ClientToScreen
SetCursorPos
GetCursorPos
ValidateRect
DefWindowProcA
GetWindowRect
GetDC
SendMessageA
SetFocus
PeekMessageA
MsgWaitForMultipleObjects
GetWindowLongA
GetParent
IsDialogMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
MessageBoxA
KillTimer
UnregisterClassA
GetForegroundWindow

opengl32

wglDeleteContext
wglCreateContext
wglShareLists
glVertex2i
glBegin
wglGetProcAddress
wglMakeCurrent
glBindTexture
glCallLists
glRasterPos2i
glListBase
glEnd
glDisable
glScissor
glTexEnvi
glReadPixels
glDrawPixels
glTexParameteri
glTexImage2D
glGenTextures
glDeleteTextures
glEnable
glViewport
glMatrixMode
glLoadIdentity
glOrtho
glAlphaFunc
glColor3ub
glPixelMapfv
glDeleteLists
glGenLists
wglUseFontBitmapsA
glTexCoord2f

wsock32

ntohs
WSAStartup
listen
ioctlsocket
connect
getsockname
closesocket
setsockopt
recvfrom
inet_ntoa
select
sendto
htons
htonl
ntohl
WSACleanup
WSAGetLastError
inet_addr
__WSAFDIsSet
getpeername
recv
send
accept
gethostbyname
bind
socket

winmm

waveOutClose
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite
waveOutReset
waveOutGetPosition
waveInAddBuffer
waveInPrepareHeader
waveInUnprepareHeader
waveInGetDevCapsA
waveInGetNumDevs
waveInStart
waveInOpen
waveInClose
waveInReset
waveOutOpen
timeEndPeriod
mixerGetControlDetailsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerSetControlDetails
mixerOpen
mixerGetNumDevs
mixerClose
waveOutGetNumDevs
mciSendCommandA
mciGetErrorStringA
waveOutGetDevCapsA
timeBeginPeriod
timeKillEvent
timeSetEvent
timeGetTime

comctl32

ImageList_Create
ImageList_Destroy
_TrackMouseEvent
InitCommonControlsEx
ImageList_AddMasked

gdi32

SelectObject
GetTextExtentPoint32A
CreateCompatibleDC
DeleteDC
GetStockObject
GetTextMetricsA
SetDIBits
CreateCompatibleBitmap
CreateSolidBrush
BitBlt
StretchBlt
ExtTextOutA
SetTextColor
SetBkMode
SetPixelFormat
ChoosePixelFormat
SwapBuffers
GetTextFaceA
DeleteObject
AddFontResourceA
CreateFontA
GetDeviceCaps
CreateFontIndirectA
Ellipse
Rectangle
Polyline
CreatePen
CreateDIBSection

comdlg32

ChooseColorA
GetOpenFileNameA
GetSaveFileNameA
ChooseFontA

shell32

SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA

ole32

OleSetContainedObject
OleCreate
CoCreateInstance
CoUninitialize
CoInitialize
CLSIDFromString

oleaut32

VariantChangeType
SysFreeString
SysAllocString
VariantCopy
VariantClear
VariantInit

advapi32

RegCloseKey
RegOpenKeyA
RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA

msacm32

acmStreamConvert
acmStreamUnprepareHeader
acmStreamClose
acmFormatSuggest
acmStreamOpen
acmStreamSize
acmStreamPrepareHeader

Exports

Exports

_bbWinMain@0
runtimeGetRuntime

Sections

.text
Size: 536KB - Virtual size: 536KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 120KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 504KB - Virtual size: 503KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 96KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f932d12798f7f6949568c59b34986bcb

Headers

File Characteristics

Imports

kernel32

user32

opengl32

wsock32

winmm

comctl32

gdi32

comdlg32

shell32

ole32

oleaut32

advapi32

msacm32

Exports

Exports

Sections

.text Size: 536KB - Virtual size: 536KB

.rdata Size: 40KB - Virtual size: 38KB

.data Size: 120KB - Virtual size: 416KB

.rsrc Size: 504KB - Virtual size: 503KB

.reloc Size: 96KB - Virtual size: 180KB

.text
Size: 536KB - Virtual size: 536KB

.rdata
Size: 40KB - Virtual size: 38KB

.data
Size: 120KB - Virtual size: 416KB

.rsrc
Size: 504KB - Virtual size: 503KB

.reloc
Size: 96KB - Virtual size: 180KB