bfb28c9aab763310be8165ac4bed9e7d39c8a832a857e48bd40e69fd72851465

Sharing

Copy URL Twitter E-mail

General

Target

bfb28c9aab763310be8165ac4bed9e7d39c8a832a857e48bd40e69fd72851465
Size

337KB
MD5

3035260648faf3701229a8d9d9ed3d60
SHA1

24ed3dc6e3ab5e181645d82b2469d5b2d3050363
SHA256

bfb28c9aab763310be8165ac4bed9e7d39c8a832a857e48bd40e69fd72851465
SHA512

72db7d7c9ce852ff0f87c14b3f30794810afff430affad692c3eba8f27586da270530a32f262db811f9552f059fc0db457fbbf1c23dea830baa93758fd4fdea3
SSDEEP

6144:m60cdfqg6BhXVKw29ZWSmEMkK8tFLSmE8:X0uiLTEw2fZRM9mFGR8

Score

N/A

Malware Config

Signatures

Files

bfb28c9aab763310be8165ac4bed9e7d39c8a832a857e48bd40e69fd72851465
.exe windows x86

786f234f993342bec99288fb5cc3d4e2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

TabbedTextOutA
GetMessageW
DestroyAcceleratorTable
GetIconInfo
KillTimer
PtInRect
CharToOemA
CharToOemBuffA
CharUpperA
CopyRect
CreateWindowExA
DefWindowProcA
DestroyIcon
DestroyWindow
DialogBoxParamA
DispatchMessageA
EnableWindow
EndDialog
FindWindowExA
GetClassNameA
GetClientRect
GetDlgItem
GetDlgItemTextA
GetMessageA
GetParent
GetSysColor
GetSystemMetrics
GetWindow
GetWindowLongA
GetWindowRect
GetWindowTextA
IsWindowVisible
LoadBitmapA
LoadCursorA
LoadIconA
LoadStringA
MapWindowPoints
MessageBoxA
OemToCharA
OemToCharBuffA
PostMessageA
RegisterClassExA
SendDlgItemMessageA
SendMessageA
SetDlgItemTextA
SetFocus
SetMenu
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
TranslateMessage
UpdateWindow
WaitForInputIdle
wsprintfA
wvsprintfA
UserHandleGrantAccess
DlgDirListA
PeekMessageA
DefWindowProcW
GetClassWord
MessageBoxExW
DefDlgProcW
UnionRect
IsWindow

ole32

CreateStreamOnHGlobal
CoCreateInstance
CLSIDFromString
OleInitialize
OleUninitialize

opengl32

glIsList
glTexCoord2s
glDisable
glEvalCoord2f
glLoadMatrixd
glDrawPixels
glGetTexEnvfv

kernel32

GetSystemTime
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
InterlockedIncrement
ResumeThread
GlobalAddAtomW
GetCurrentProcessId
WritePrivateProfileStringW
RaiseException
FreeResource
GetVersionExA
LoadLibraryA
CompareStringW
GlobalFindAtomW
GetModuleHandleA
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
MoveFileW
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetFullPathNameW
FileTimeToSystemTime
lstrlenA
FileTimeToLocalFileTime
GetFileTime
HeapFree
HeapAlloc
ConvertDefaultLocale
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
GetFileAttributesA
GetTempPathA
LockFileEx
GetFullPathNameA
OutputDebugStringA
PulseEvent
CreateEventA
QueryPerformanceFrequency
GetLogicalDrives
GetStringTypeExA
CreateMutexA
GetVersion
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
lstrcmpW
GlobalDeleteAtom
GetModuleHandleW
GlobalFree
GlobalAlloc
MulDiv
SetFilePointer
SetFilePointerEx
GetCurrentThreadId
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetSystemDirectoryW
CreateProcessW
GetExitCodeProcess
FindResourceW
GlobalLock
GlobalUnlock
LocalAlloc
DeleteFileA
SetEnvironmentVariableA
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetDateFormatA
GetTimeFormatA
GetLocaleInfoA
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
LCMapStringW
LCMapStringA
Sleep
GetOEMCP
GetCPInfo
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
SetHandleCount
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
HeapSize
VirtualQuery
VirtualAlloc
VirtualProtect
CreateThread
ExitThread
ExitProcess
GetSystemTimeAsFileTime
GetFileType
SetStdHandle
HeapReAlloc
PeekConsoleInputW
lstrcmpiA
WriteConsoleOutputCharacterW
ReadConsoleA
GetUserDefaultLCID
DeleteVolumeMountPointW
OpenProcess
GetProcessHeap
GetCurrentDirectoryA
SetEnvironmentVariableW
ReleaseSemaphore
CreateSemaphoreA
GetShortPathNameW
CloseHandle
GetFileSizeEx
CreateFileW
CopyFileW
FlushFileBuffers
WriteFile
WaitForSingleObject
GetLastError
CreateMutexW
WideCharToMultiByte
GetACP
MultiByteToWideChar
lstrlenW
GetDiskFreeSpaceExW
GetDriveTypeW
GetFileAttributesW
DeleteFileW
SetFileAttributesW
SetCurrentDirectoryW
GetVolumeInformationW
SetErrorMode
lstrcpyW
GetCurrentDirectoryW
GetTempPathW
ReadFile
GetFileSize
GetDriveTypeA
GetLogicalDriveStringsA
FindClose
FindNextFileW
FindFirstFileW
FreeLibrary
LockResource
LoadResource
FindResourceExW
LoadLibraryW
GetModuleFileNameW
ReleaseMutex
SetLastError
GetUserDefaultLangID
Module32NextW
Module32FirstW
CreateToolhelp32Snapshot
Thread32Next
Thread32First
Process32NextW
Process32FirstW
GetTempFileNameW
SizeofResource
GetThreadLocale
LocalFree
GetCurrentProcess
GetCurrentThread
GetVersionExW
FormatMessageW
lstrcatW
GetFileAttributesExW
FreeConsole
GetConsoleWindow
GetProcAddress
GetCommandLineW
GetStdHandle
GlobalMemoryStatusEx
IsProcessorFeaturePresent
GetSystemInfo
GetSystemWindowsDirectoryW
GetLogicalDriveStringsW
CreateDirectoryW
GetTickCount
RemoveDirectoryW

Sections

.text
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

786f234f993342bec99288fb5cc3d4e2

Headers

DLL Characteristics

File Characteristics

Imports

user32

ole32

opengl32

kernel32

Sections

.text Size: 140KB - Virtual size: 140KB

.rdata Size: 95KB - Virtual size: 94KB

.data Size: 5KB - Virtual size: 77KB

.rsrc Size: 95KB - Virtual size: 95KB

.text
Size: 140KB - Virtual size: 140KB

.rdata
Size: 95KB - Virtual size: 94KB

.data
Size: 5KB - Virtual size: 77KB

.rsrc
Size: 95KB - Virtual size: 95KB