bf877d97df73c0192d9e4dda16d42c2ee02e222316ca89a95d7deaa2aa9ca5de

Sharing

Copy URL Twitter E-mail

General

Target

bf877d97df73c0192d9e4dda16d42c2ee02e222316ca89a95d7deaa2aa9ca5de
Size

214KB
MD5

3154d1c1069fd2c9208792d45165db90
SHA1

2f3e5f50515b90d02d2c4c1b95f78bc9edc0ef29
SHA256

bf877d97df73c0192d9e4dda16d42c2ee02e222316ca89a95d7deaa2aa9ca5de
SHA512

d15642d5825e2ee9bf4c592af3c4d80b1ea6ea56e63f518035c58163484f721e54c42860060ad454618ea54c6d562053e1a3cb694c7f4c6f5dbbd8108d6f42b0
SSDEEP

6144:eQJCEggVqQvhRtRmlW8uRNhr/0rANgPubv:hAEgSjPtglQhrcErbv

Score

N/A

Malware Config

Signatures

Files

bf877d97df73c0192d9e4dda16d42c2ee02e222316ca89a95d7deaa2aa9ca5de
.exe windows x86

6eb5afefc5dd4126eed09534f723fa0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Add
ImageList_AddMasked
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_GetDragImage
ImageList_LoadImageW
ImageList_Write
InitCommonControls

gdi32

CopyMetaFileW
CreateDIBitmap
CreateRectRgn
DeleteObject
FillRgn
FrameRgn
GetObjectType
InvertRgn
MoveToEx
SelectObject
SetWorldTransform
StretchBlt

ole32

CoGetInterfaceAndReleaseStream
CoReleaseMarshalData
OleFlushClipboard
OleSetClipboard
OleSetMenuDescriptor
PropVariantClear

advapi32

CryptGenRandom
LookupPrivilegeValueW
RegCreateKeyExW
RegDeleteKeyA
RegDeleteValueA
RegQueryValueExA
SetSecurityDescriptorDacl
SetSecurityDescriptorOwner

user32

CharNextA
CreateMenu
CreatePopupMenu
CreateWindowExA
DialogBoxParamA
DrawFrameControl
EqualRect
FrameRect
GetActiveWindow
GetFocus
GetMenuItemCount
GetMenuStringA
GetPropA
GetSystemMetrics
InvalidateRect
IsRectEmpty
LoadIconA
PostQuitMessage
SendDlgItemMessageA
SendMessageA
SetCapture
SetClipboardData
SetScrollPos
SetWindowLongA
WinHelpA

shell32

CommandLineToArgvW
DragQueryFile
DragQueryPoint
ExtractAssociatedIconW
ExtractIconExA
ExtractIconW
SHAppBarMessage
SHBindToParent
SHBrowseForFolder
SHBrowseForFolderA
SHGetPathFromIDList
SHGetPathFromIDListA
SHGetPathFromIDListW
SHGetSpecialFolderPathA
ShellExecuteA
ShellExecuteExA
ShellExecuteW

kernel32

CreateEventW
CreateFileA
CreateFileMappingA
CreateMutexA
ExitThread
FindResourceA
GetCommandLineA
GetCurrentDirectoryA
GetCurrentProcessId
GetFileSize
GetLastError
GetShortPathNameA
GetStringTypeExA
GetThreadLocale
GetUserDefaultLCID
GlobalLock
IsBadCodePtr
IsDBCSLeadByte
RaiseException
SetEnvironmentVariableA
SizeofResource
Sleep
TerminateThread
TlsSetValue
lstrcmpiA

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6eb5afefc5dd4126eed09534f723fa0e

Headers

File Characteristics

Imports

comctl32

gdi32

ole32

advapi32

user32

shell32

kernel32

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 99KB - Virtual size: 99KB

.rsrc Size: 22KB - Virtual size: 140KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 99KB - Virtual size: 99KB

.rsrc
Size: 22KB - Virtual size: 140KB