bfb10fe2311e0ce8b44b27c2cc797a7cc043c84cdb61dc17b6a0ffb82a8608f7

Sharing

Copy URL Twitter E-mail

General

Target

bfb10fe2311e0ce8b44b27c2cc797a7cc043c84cdb61dc17b6a0ffb82a8608f7
Size

600KB
MD5

0fb371e79bbf8ebb7cc5fedd9c8aca60
SHA1

6b62a0e901a36905f10cf1388aa1d97d83e33bbb
SHA256

bfb10fe2311e0ce8b44b27c2cc797a7cc043c84cdb61dc17b6a0ffb82a8608f7
SHA512

677e23b2dfec0353bafbcc516c0ec9af2eec202841cff135829e5e2e9033d235f7bd33d72c29ff47b91689f37b4657d4b1e09846fc7aa19e6fb8b625cf1b08b5
SSDEEP

12288:rVugLZQPbH9msz/spHyW3YqtOlqZj3CS8Uv7qsea93:ggLucszUL3TFDOsn93

Score

N/A

Malware Config

Signatures

Files

bfb10fe2311e0ce8b44b27c2cc797a7cc043c84cdb61dc17b6a0ffb82a8608f7
.exe windows x86

9bf7d55b8d674d02c8ffdc4a595d6793

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProfileStringW
GetTempFileNameW
GetShortPathNameW
CreateFileW
SetFilePointer
SetEndOfFile
FileTimeToLocalFileTime
FileTimeToSystemTime
GetTickCount
WaitForSingleObject
GetSystemInfo
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
GetLocaleInfoW
EnumCalendarInfoW
SetErrorMode
GetVolumeInformationW
GetDiskFreeSpaceW
DeleteFileW
FindFirstFileW
FindClose
GetPrivateProfileStringW
GetCurrentProcessId
CreateProcessW
LoadLibraryW
GetCurrentThreadId
OpenSemaphoreW
ReleaseSemaphore
CloseHandle
lstrcpynW
lstrcmpiW
LoadLibraryExW
MultiByteToWideChar
FreeLibrary
GetLastError
GetModuleHandleW
lstrcpyW
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetCurrentDirectoryW
SetCurrentDirectoryW
MulDiv
EnterCriticalSection
GetModuleFileNameW
LeaveCriticalSection
GetCommandLineW
InterlockedDecrement
FormatMessageW
lstrlenW
LocalAlloc
FindResourceW
LoadResource
LockResource
SizeofResource
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
SetEnvironmentVariableA
SetStdHandle
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
GetCPInfo
GetOEMCP
QueryPerformanceCounter
CompareStringW
CompareStringA
GetTimeZoneInformation
GetDateFormatA
GetTimeFormatA
LCMapStringW
LCMapStringA
IsBadWritePtr
SetUnhandledExceptionFilter
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
HeapSize
VirtualQuery
VirtualAlloc
VirtualProtect
TerminateProcess
ExitProcess
GetSystemTimeAsFileTime
HeapAlloc
HeapReAlloc
HeapFree
RtlUnwind
GetStartupInfoW
WritePrivateProfileStringW
LocalFileTimeToFileTime
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
GlobalFlags
ReleaseMutex
CreateMutexW
GlobalGetAtomNameW
GetFileTime
GetProcAddress
LoadLibraryA
GetSystemDefaultLangID
FreeResource
GlobalFree
GlobalUnlock
GlobalLock
SetLastError
GetModuleHandleA
LocalFree
GlobalAlloc
GetVersionExA
lstrcmpW
lstrcatW
lstrlenA
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
WideCharToMultiByte
SystemTimeToFileTime
MoveFileW
GetStringTypeExW
ReadFile
WriteFile
FlushFileBuffers
LockFile
UnlockFile
GetFileSize
DuplicateHandle
GetCurrentProcess
GetFullPathNameW
EnumResourceLanguagesW
GetVersion
ConvertDefaultLocale
lstrcmpiA
lstrcmpA
GetCurrentThread
GetFileAttributesW
SetFileTime

user32

SetCapture
ReleaseCapture
KillTimer
GetDlgCtrlID
GetFocus
GetParent
CopyRect
PostThreadMessageW
CharNextW
LoadCursorW
UpdateWindow
GetDesktopWindow
InvalidateRect
RedrawWindow
DestroyMenu
UnregisterClassW
MessageBoxW
EndDialog
GetNextDlgTabItem
DestroyWindow
CreateDialogIndirectParamW
SetActiveWindow
TabbedTextOutW
DrawTextExW
GrayStringW
GetWindowDC
BeginPaint
EndPaint
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
UnhookWindowsHookEx
GetWindowPlacement
IsIconic
SystemParametersInfoA
SetWindowPos
DefWindowProcW
RegisterClassW
GetClassInfoW
SetScrollInfo
GetScrollInfo
DeferWindowPos
EqualRect
AdjustWindowRectEx
GetMenu
ShowScrollBar
GetScrollPos
SetScrollPos
GetScrollRange
SetScrollRange
TrackPopupMenu
ScrollWindow
MapWindowPoints
LoadIconW
GetMessageTime
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
GetLastActivePopup
GetForegroundWindow
GetWindowTextW
GetWindowTextLengthW
IsChild
LoadBitmapW
SendDlgItemMessageA
SetTimer
RemovePropW
GetPropW
SetPropW
GetClassNameW
GetClassLongW
GetClassInfoExW
CallNextHookEx
SetWindowsHookExW
CreateWindowExW
WinHelpW
SetCursor
SetWindowTextW
MoveWindow
GetMenuCheckMarkDimensions
CheckMenuItem
EnableMenuItem
ModifyMenuW
SetMenuItemBitmaps
FindWindowW
DrawIcon
SetWindowRgn
CharUpperW
PostQuitMessage
ValidateRect
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatW
TranslateAcceleratorW
SetMenu
BringWindowToTop
IsDialogMessageW
InsertMenuItemW
LoadAcceleratorsW
ReuseDDElParam
UnpackDDElParam
LoadMenuW
GetSysColorBrush
GetMenuItemInfoW
MessageBeep
DestroyIcon
CopyAcceleratorTableW
InvalidateRgn
GetNextDlgGroupItem
DrawFrameControl
GetWindowRect
GetClientRect
GetSystemMetrics
IsWindow
IsRectEmpty
PtInRect
SetRect
SetRectEmpty
GetCapture
PostMessageW
SendMessageW
wsprintfW
SendDlgItemMessageW
EnableWindow
SetFocus
CreatePopupMenu
DrawTextW
GetKeyState
IsWindowVisible
DrawFocusRect
GetDlgItem
TranslateMessage
RegisterWindowMessageW
PeekMessageW
ReleaseDC
GetDC
SystemParametersInfoW
GetActiveWindow
ScreenToClient
FillRect
GetMessagePos
InflateRect
SetForegroundWindow
ShowWindow
IsWindowEnabled
EnumWindows
GetWindowThreadProcessId
GetWindow
GetWindowLongW
CallWindowProcW
GetCursorPos
SetWindowLongW
WindowFromPoint
GetSysColor
GetMessageW
DispatchMessageW
ClientToScreen
IntersectRect
OffsetRect

gdi32

SetTextAlign
MoveToEx
LineTo
GetClipBox
RectVisible
GetBkColor
ExtCreatePen
CreateCompatibleBitmap
CreateBitmap
CreateSolidBrush
GetTextExtentPoint32W
Rectangle
EndDoc
EndPage
StartPage
StartDocW
GetDeviceCaps
BitBlt
CreateCompatibleDC
GetObjectW
CreateFontIndirectW
GetStockObject
DeleteObject
GetViewportExtEx
SetMapMode
SetTextColor
SetBkMode
SetBkColor
RestoreDC
CreateRectRgnIndirect
GetRgnBox
GetTextColor
GetMapMode
Ellipse
LPtoDP
CreateEllipticRgn
CreatePen
SaveDC
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
PtVisible
GetPixel
GetWindowExtEx

advapi32

RegQueryValueExA
RegSetValueW
RegOpenKeyW
RegQueryValueExW
RegEnumKeyW
RegQueryValueW
SetFileSecurityW
GetFileSecurityW
RegCreateKeyW
RegOpenKeyExA
RegDeleteKeyW
RegCreateKeyExW
RegDeleteValueW
RegOpenKeyExW
RegCloseKey
RegQueryInfoKeyW
RegEnumKeyExW
RegSetValueExW

shell32

ShellExecuteW
ExtractIconW
DragQueryFileW
DragFinish
SHGetFileInfoW

comctl32

ImageList_Destroy
ord17
ImageList_GetImageInfo
ImageList_SetBkColor
ImageList_Draw
ImageList_GetImageCount
ImageList_LoadImageW

shlwapi

PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CLSIDFromString
CLSIDFromProgID
OleUninitialize
CoTaskMemFree
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
OleRun
CoTaskMemRealloc
OleInitialize
CoTaskMemAlloc
CoCreateInstance
CoSuspendClassObjects
CoFreeUnusedLibraries

oleaut32

OleCreateFontIndirect
SafeArrayDestroy
SafeArrayGetElement
SafeArrayCopy
VariantCopy
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SysAllocStringLen
VarUdateFromDate
VarBstrFromDate
VarDateFromStr
SystemTimeToVariantTime
VariantTimeToSystemTime
VarUI4FromStr
VariantChangeType
SysStringLen
LoadTypeLi
LoadRegTypeLi
VariantInit
DispCallFunc
VariantClear
SysAllocString
SysStringByteLen
SysAllocStringByteLen
SysFreeString
GetErrorInfo

comdlg32

PrintDlgW
GetOpenFileNameW
GetSaveFileNameW
GetFileTitleW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

Sections

.text
Size: 380KB - Virtual size: 376KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rrdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9bf7d55b8d674d02c8ffdc4a595d6793

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

comdlg32

winspool.drv

Sections

.text Size: 380KB - Virtual size: 376KB

.rdata Size: 108KB - Virtual size: 105KB

.data Size: 16KB - Virtual size: 31KB

.rsrc Size: 20KB - Virtual size: 16KB

.rrdata Size: 72KB - Virtual size: 72KB

.text
Size: 380KB - Virtual size: 376KB

.rdata
Size: 108KB - Virtual size: 105KB

.data
Size: 16KB - Virtual size: 31KB

.rsrc
Size: 20KB - Virtual size: 16KB

.rrdata
Size: 72KB - Virtual size: 72KB