bc3ca9ba44fabb3ad470f8a4c92d5c684dd4d09d079817b8ad6ca13a3d1bccbc

Sharing

Copy URL

Twitter E-mail

General

Target

bc3ca9ba44fabb3ad470f8a4c92d5c684dd4d09d079817b8ad6ca13a3d1bccbc
Size

294KB
MD5

9086513cfe10c401f65cfc55e00257b0
SHA1

0cd7fec2086a86385faffbef4e4edfc9697c2fe9
SHA256

bc3ca9ba44fabb3ad470f8a4c92d5c684dd4d09d079817b8ad6ca13a3d1bccbc
SHA512

35358b1d8feb555329f197df08d8c92e004748e4e61b5f30fbea1472220051544b2754f697703e4c526237359f8e973b2bacdf6fb862d2b5a0bc4562d18281ac
SSDEEP

6144:Mb4fAS2iM2j0S/jWAZpnGUOJrB6V97XwRkwkUT5By7nts9scKfZ:HAS23JqnGUY1U7U9BGsuR

Score

N/A

Malware Config

Signatures

Files

bc3ca9ba44fabb3ad470f8a4c92d5c684dd4d09d079817b8ad6ca13a3d1bccbc
.exe windows x86

959268be9a9454e362912ab3f50f1d7b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

EndDoc
Polyline
StartDocW

lz32

LZRead
GetExpandedNameA
LZInit

version

VerLanguageNameW

shell32

SHAddToRecentDocs
SHGetFileInfoA

user32

ShowWindow
ValidateRect
DlgDirListComboBoxW
CloseWindow
MsgWaitForMultipleObjects
UpdateWindow

imm32

ImmGetConversionListA
ImmGetCandidateListCountA
ImmGetDescriptionW
ImmUnregisterWordW
ImmEscapeA
ImmIsIME
ImmSetCompositionFontW
ImmGetIMEFileNameW
ImmGetStatusWindowPos

kernel32

GetPrivateProfileStringW
HeapAlloc
GetExitCodeProcess
Beep
GetNumberFormatA
GetHandleInformation
GetPrivateProfileSectionW
GetConsoleTitleW
GetLocaleInfoA
FatalExit
GetEnvironmentVariableW
DosDateTimeToFileTime
GetPrivateProfileSectionA
GetTempFileNameW
GetConsoleScreenBufferInfo
GetModuleHandleW
FindResourceA
FlushFileBuffers
CopyFileW
GetThreadPriorityBoost
CreateDirectoryExW
GetFileSize
DisableThreadLibraryCalls
CreateDirectoryExA
GetTapeStatus
GetProcessVersion
EraseTape
GetQueuedCompletionStatus
AddAtomA
GetSystemInfo
BeginUpdateResourceA
BuildCommDCBAndTimeoutsA
GetThreadTimes
EnumSystemCodePagesA
GetLocalTime
CallNamedPipeA
GetModuleHandleA
GetStartupInfoA

advapi32

LsaSetInformationPolicy
RegUnLoadKeyW
RegSaveKeyW
LsaRetrievePrivateData
LsaEnumerateAccountsWithUserRight
GetNamedSecurityInfoA
BuildTrusteeWithNameW
LsaNtStatusToWinError
DecryptFileA
GetLengthSid
AreAllAccessesGranted
OpenEventLogA
IsTokenRestricted
RegisterEventSourceW
LookupAccountNameA
OpenSCManagerA
CreateProcessAsUserW
ObjectDeleteAuditAlarmW
BuildSecurityDescriptorA
SetSecurityInfo
PrivilegedServiceAuditAlarmA
GetServiceDisplayNameW
CreateProcessAsUserA
GetSidIdentifierAuthority
MakeSelfRelativeSD
ObjectCloseAuditAlarmA
RegOpenKeyW
QueryServiceLockStatusA
AddAccessDeniedAce
LookupPrivilegeDisplayNameA
GetAuditedPermissionsFromAclW
GetTrusteeFormA
GetMultipleTrusteeA
OpenSCManagerW
CreateRestrictedToken
EqualSid
LsaQueryDomainInformationPolicy
ObjectPrivilegeAuditAlarmW
DuplicateTokenEx
GetSecurityDescriptorLength
RegDeleteKeyA
AccessCheckAndAuditAlarmW
IsValidSecurityDescriptor
RegDeleteKeyW
RegDeleteValueW
BackupEventLogW
SetServiceStatus
LookupSecurityDescriptorPartsW
RegisterEventSourceA
GetSecurityDescriptorOwner
AdjustTokenGroups
GetUserNameW
LsaEnumerateTrustedDomainsEx
ReadEventLogA

resutils

ResUtilDupParameterBlock
ResUtilGetProperty

msvcrt

_controlfp
_except_handler3
__dllonexit
__p__fmode
_adjust_fdiv
__setusermatherr
_onexit
__set_app_type
__p__commode
_initterm
__getmainargs
_acmdln
_exit
_XcptFilter
exit

ole32

HMENU_UserMarshal
WriteFmtUserTypeStg
HMENU_UserUnmarshal
CoMarshalHresult
OleCreateFromFileEx

urlmon

HlinkNavigateMoniker
WriteHitLogging
FindMediaType
CoInternetGetProtocolFlags
HlinkSimpleNavigateToMoniker

oleaut32

SafeArrayGetIID
VarBstrFromUI4

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

959268be9a9454e362912ab3f50f1d7b

Headers

File Characteristics

Imports

gdi32

lz32

version

shell32

user32

imm32

kernel32

advapi32

resutils

msvcrt

ole32

urlmon

oleaut32

Sections

.text Size: 40KB - Virtual size: 37KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 308KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 40KB - Virtual size: 37KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 308KB

.rsrc
Size: 4KB - Virtual size: 1KB