bffde784eb837bf7e2f8de43d4b95299b8c146432fc8efe7ed1ef489dca1808f

Sharing

Copy URL Twitter E-mail

General

Target

bffde784eb837bf7e2f8de43d4b95299b8c146432fc8efe7ed1ef489dca1808f
Size

154KB
MD5

6da92fe34a7021b78e034739b5189904
SHA1

71324c495f1ea77cfdf213b57f91a34b0350b9a3
SHA256

bffde784eb837bf7e2f8de43d4b95299b8c146432fc8efe7ed1ef489dca1808f
SHA512

eb07252f64e8e442d7f7771f58fb3ff190590a7343bb08c93a49dddad65309d62bd2993dbcc5e0cc1edc0515c77160f2022dbfd81f8e8d889086b8ae0950928d
SSDEEP

3072:ogtGYJUowaNxu1ZWU7j7xx6PekGVywr6S/M9iiJAPCujKm3q:ogt4opeBxoG/U9xSPCujKx

Score

N/A

Malware Config

Signatures

Files

bffde784eb837bf7e2f8de43d4b95299b8c146432fc8efe7ed1ef489dca1808f
.exe windows x86

0494682503b3a0744ee6e5c4a9c9de4e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameA
CommDlgExtendedError
ReplaceTextW
PrintDlgExW
GetOpenFileNameW
ChooseFontW
GetSaveFileNameA
FindTextW
PrintDlgW
GetSaveFileNameW
PageSetupDlgW
GetFileTitleW
ChooseColorW

user32

SystemParametersInfoA
GetProcessWindowStation

kernel32

GetCommModemStatus
FileTimeToDosDateTime
CreateEventW
SetCommState
OpenFile
VirtualAlloc
QueryPerformanceCounter
lstrcmpiW
WaitCommEvent
GlobalSize
GetSystemDirectoryW
VirtualFree
lstrcatW
WaitForSingleObject
GetFileAttributesExW
CreateMutexW
AreFileApisANSI
GetComputerNameA
SearchPathA
LCMapStringA
MapViewOfFile
FindResourceExW
SetThreadPriority
FreeResource
GetUserDefaultLCID
GetCurrentDirectoryW
GetFileAttributesExA
EnumResourceNamesW
GetCommTimeouts
GetFileTime
CreateFileW
GetWindowsDirectoryW
IsBadWritePtr
GetCommandLineW
FindClose
GetTickCount
GlobalFlags
SetLastError
GetModuleHandleA
lstrcatA
GetBinaryTypeA
SetupComm
ReleaseSemaphore
SetUnhandledExceptionFilter
CancelIo
TlsGetValue
GetCommConfig
FindFirstFileA
GetTempPathA
GetSystemWindowsDirectoryW
CreateMutexA
GetFileSize
GetAtomNameW
GetComputerNameW
GlobalHandle
LCMapStringW
GetStartupInfoA
GetLocaleInfoW
SleepEx
QueryDosDeviceW
VerSetConditionMask
DeviceIoControl
CreateDirectoryW
GetSystemInfo
GetStringTypeExW
GetOEMCP
IsDBCSLeadByte
TryEnterCriticalSection
CreateNamedPipeA
EnumResourceTypesA
PulseEvent
GetDateFormatA
SetSystemTimeAdjustment
LoadLibraryW
CreateEventA
FindFirstFileW
GetFileAttributesW
UnmapViewOfFile
GlobalGetAtomNameA
HeapCreate
lstrcpyA
GetVersionExA
GlobalAddAtomA
EnumSystemLocalesA
GetSystemWindowsDirectoryA
GetCommProperties
CloseHandle
ConnectNamedPipe
VirtualProtect
lstrcmpA
lstrcmpW
GetThreadLocale
CopyFileW
DefineDosDeviceW
CreateRemoteThread
GetFileInformationByHandle
GetDateFormatW
RemoveDirectoryA
CompareStringA
FreeLibrary
SetFileApisToOEM
SetTimerQueueTimer
DisconnectNamedPipe
GlobalDeleteAtom
IsValidLocale
SetHandleCount
GlobalAlloc
LocalLock
IsDBCSLeadByteEx
GetOverlappedResult
IsBadReadPtr
AddAtomA
LoadLibraryA
SetPriorityClass
TransactNamedPipe
GlobalLock
LocalUnlock
UnlockFile
SetNamedPipeHandleState
lstrcmpiA
ConvertDefaultLocale
CreateSemaphoreW
GlobalAddAtomW
GetSystemTime
WaitForSingleObjectEx
ExitThread
SetWaitableTimer
GetProcAddress
GetShortPathNameA
LoadLibraryExW
GlobalMemoryStatusEx
FlushViewOfFile
GetCommState
GetTimeZoneInformation
RemoveDirectoryW
GetModuleFileNameW
GetComputerNameExA
CreateWaitableTimerA
VerifyVersionInfoW
DeleteFileW
SearchPathW
GetCPInfo
GetSystemDefaultLangID
GetSystemTimeAdjustment
GetFileAttributesA
SuspendThread
FindFirstChangeNotificationW
GetTimeFormatA
GetLastError
WaitForMultipleObjectsEx
GetSystemTimeAsFileTime
RtlUnwind
LocalSize
ReleaseMutex
AddAtomW
HeapUnlock
IsBadStringPtrW
EnumResourceLanguagesA
SetThreadExecutionState
EscapeCommFunction
IsBadCodePtr
LeaveCriticalSection
SetCurrentDirectoryA
GetFullPathNameW
GetVersionExW
GetComputerNameExW
EnumResourceNamesA
HeapReAlloc
SetThreadAffinityMask
SizeofResource
GetLongPathNameW
LocalFree
GetTimeFormatW
SetFileAttributesW
CreateFileMappingW
GetCurrentDirectoryA
ReadFile
GetFileType

comctl32

CreateToolbarEx
InitCommonControlsEx
ImageList_Remove
ImageList_GetIconSize
ImageList_Create
ImageList_GetIcon
CreatePropertySheetPageW
ImageList_ReplaceIcon
PropertySheetW
ImageList_Read
ImageList_Destroy
ImageList_SetIconSize
CreateStatusWindowW
DestroyPropertySheetPage
ImageList_GetImageCount
PropertySheetA
CreatePropertySheetPageA
ImageList_Write
ImageList_LoadImageW
ImageList_Draw
ImageList_AddMasked

Exports

Exports

?buildPreference@@YGEUsimulatecorW@@@Z

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.kmd1
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kmd2
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kmd3
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kmd4
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0494682503b3a0744ee6e5c4a9c9de4e

Headers

File Characteristics

Imports

comdlg32

user32

kernel32

comctl32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 44KB

.kmd1 Size: 6KB - Virtual size: 6KB

.kmd2 Size: 512B - Virtual size: 128B

.kmd3 Size: 512B - Virtual size: 128B

.data Size: 27KB - Virtual size: 27KB

.kmd4 Size: 24KB - Virtual size: 24KB

.rsrc Size: 47KB - Virtual size: 47KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 44KB - Virtual size: 44KB

.kmd1
Size: 6KB - Virtual size: 6KB

.kmd2
Size: 512B - Virtual size: 128B

.kmd3
Size: 512B - Virtual size: 128B

.data
Size: 27KB - Virtual size: 27KB

.kmd4
Size: 24KB - Virtual size: 24KB

.rsrc
Size: 47KB - Virtual size: 47KB

.reloc
Size: 2KB - Virtual size: 1KB