bbef82590d591c9ce39ac1af51f07fa3bfe393c24797e6ea5d5e5806244a8a01

Sharing

Copy URL Twitter E-mail

General

Target

bbef82590d591c9ce39ac1af51f07fa3bfe393c24797e6ea5d5e5806244a8a01
Size

21.7MB
MD5

1e523f3261bd64fc6766551c680a5782
SHA1

34edd7ba509d33cf5324ca38e55e4b074059b0f5
SHA256

bbef82590d591c9ce39ac1af51f07fa3bfe393c24797e6ea5d5e5806244a8a01
SHA512

cbd472f54f8d8b00613c63d524911acffef8c4df89f75b97a49a790f59f6bfaf36669e765166cdd9d2d2c529296b89ede9ca7eac15ccddef53e9d1e98262ac27
SSDEEP

393216:2LLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLzyyyyyyyyyyyyyyyyyyyyyyyyyyU:p

Score

N/A

Malware Config

Signatures

Files

bbef82590d591c9ce39ac1af51f07fa3bfe393c24797e6ea5d5e5806244a8a01
.exe windows x86

be2d82c40bda7c522623a8a6650dda32

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoRegisterClassObject
IIDFromString
CoCreateInstance
CoCreateGuid
CoGetClassObject
GetRunningObjectTable
GetHGlobalFromStream
CoInitialize
CreateILockBytesOnHGlobal
CLSIDFromProgID
MkParseDisplayName
StgIsStorageFile
CoCreateInstanceEx
OleRun
CreateBindCtx
CoGetApartmentID
CoGetObjectContext
CoInitializeEx
OleRegGetMiscStatus
OleSaveToStream
CreateStreamOnHGlobal
CoInitializeSecurity
PropVariantCopy
StringFromIID

msvcrt

ctime
iswdigit
_ltoa
srand
_ftol
tolower
fwrite
__p__osver
_amsg_exit
_unlock
wcscpy
atoi
time
wcstok
_cexit
_tell
wcstol
rand
_ltow
wcsncat
_fileno
_finite
_stat

user32

IsIconic
GetAsyncKeyState
DialogBoxParamW
GetWindowTextW
DrawIcon
LoadIconA
CreateDialogParamW
SetMenu
LoadBitmapA
CharUpperA
GetWindowTextLengthW
IsWindowVisible
OffsetRect
InflateRect
LoadStringA
RegisterWindowMessageW
CheckMenuItem
GetClassNameA
GetMessagePos

kernel32

TlsGetValue
CreateMutexW
GetCPInfo
EnterCriticalSection
GlobalUnlock
FreeEnvironmentStringsA
lstrcmpA
LocalAlloc
ExitProcess
GetFileAttributesA
CreateFileMappingA
LCMapStringW
TlsAlloc
lstrcpynA
SetErrorMode
VirtualAllocEx
FreeLibrary
LeaveCriticalSection
GlobalLock
CreateEventA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 5KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 14KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.stab
Size: 21KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be2d82c40bda7c522623a8a6650dda32

Headers

DLL Characteristics

File Characteristics

Imports

ole32

msvcrt

user32

kernel32

Sections

.text Size: 30KB - Virtual size: 30KB

.orpc Size: 5KB - Virtual size: 9KB

.code Size: 14KB - Virtual size: 22KB

.stab Size: 21KB - Virtual size: 44KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 30KB - Virtual size: 30KB

.orpc
Size: 5KB - Virtual size: 9KB

.code
Size: 14KB - Virtual size: 22KB

.stab
Size: 21KB - Virtual size: 44KB

.reloc
Size: 2KB - Virtual size: 1KB