bfe97684b3e1e839e1cb5d8f37e21fa804d36fd5fdcd45eb19822c247f214375

Sharing

Copy URL Twitter E-mail

General

Target

bfe97684b3e1e839e1cb5d8f37e21fa804d36fd5fdcd45eb19822c247f214375
Size

1.5MB
MD5

ab591251fd8a95d33e8a81e19744364e
SHA1

ae074bef446b6f341ffd93128aaa333be49d2671
SHA256

bfe97684b3e1e839e1cb5d8f37e21fa804d36fd5fdcd45eb19822c247f214375
SHA512

2d9f96317b5a0d6fe603b8deb2dd233d855945c8b6a5395b53445abedd108e0cb8a8abaa0912ec01ed9a8140af4d4fd44f1f6d196668b506c07f9241a313b991
SSDEEP

24576:2gBQPeScaD1lzF3E6ndQ3nMoIE0yphATWwcZf/Tq:2gBQGg0eQ3jayLATgZf/Tq

Score

N/A

Malware Config

Signatures

Files

bfe97684b3e1e839e1cb5d8f37e21fa804d36fd5fdcd45eb19822c247f214375
.exe windows x86

329e621298299bd079e866ab7f4fc88c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
CompareStringA
CompareStringW
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetCurrentDirectoryA
FreeEnvironmentStringsA
IsBadReadPtr
IsBadCodePtr
GetCPInfo
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeA
GetStringTypeW
CreateFileA
GetACP
GetOEMCP
SetEnvironmentVariableA
GetDriveTypeA
UnhandledExceptionFilter
HeapSize
FindResourceA
GlobalAddAtomA
GetProfileStringA
InterlockedExchange
GetFileType
SetStdHandle
GetLocalTime
GetSystemTime
GetTimeZoneInformation
ExitThread
HeapReAlloc
RaiseException
HeapFree
HeapAlloc
RtlUnwind
GetStartupInfoW
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
FindResourceExW
GetCurrentDirectoryW
GlobalFlags
FindNextFileW
lstrcmpiW
GetThreadLocale
GetStringTypeExW
GetVolumeInformationW
FindFirstFileW
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
DuplicateHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
GetProfileIntW
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetProcessVersion
GlobalGetAtomNameW
MulDiv
SetLastError
GetDiskFreeSpaceW
GetFileTime
SetFileTime
GetFullPathNameW
GetTempFileNameW
GetFileAttributesW
InterlockedDecrement
InterlockedIncrement
GlobalFree
GetModuleHandleA
LoadLibraryA
GetVersion
lstrcatW
GlobalAddAtomW
GlobalFindAtomW
lstrcpyW
SuspendThread
lstrcmpW
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
lstrlenA
ExitProcess
GlobalAlloc
GlobalLock
GlobalUnlock
SizeofResource
LoadResource
LockResource
SetCurrentDirectoryW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetPrivateProfileStringW
SetThreadPriority
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetWindowsDirectoryW
GetModuleFileNameW
LoadLibraryW
FreeLibrary
GetCurrentProcess
FindResourceW
GetTempPathW
CreateDirectoryW
GetFileAttributesExW
GetLongPathNameW
GetShortPathNameW
GetLocaleInfoW
GetNumberFormatW
GetLastError
LocalFree
MoveFileW
DeleteFileW
Sleep
CreateProcessW
TerminateProcess
GetExitCodeProcess
GetCurrentThreadId
GetModuleHandleW
GetProcAddress
GetVersionExW
CloseHandle
CreateEventW
CreateThread
WaitForMultipleObjects
SetEvent
lstrcpynW
GetDriveTypeW
WaitForSingleObject
ResumeThread
GetTickCount
lstrlenW
WideCharToMultiByte

user32

SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetTopWindow
IsChild
WinHelpW
wsprintfW
GetClassInfoW
RegisterClassW
TrackPopupMenu
SetWindowPlacement
GetDlgItem
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
DestroyWindow
CreateWindowExW
DefWindowProcW
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindowPlacement
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
EnableMenuItem
GetNextDlgTabItem
GetActiveWindow
ValidateRect
GetLastActivePopup
MessageBoxW
ShowOwnedPopups
PostQuitMessage
SetWindowPos
CheckMenuItem
GetMenu
SetMenu
IsIconic
ExitWindowsEx
DestroyIcon
GetMessageW
PeekMessageW
TranslateMessage
DispatchMessageW
InsertMenuW
FindWindowW
CallNextHookEx
keybd_event
SetWindowsHookExW
TrackPopupMenuEx
UnhookWindowsHookEx
GetMenuStringW
GetMenuItemCount
WindowFromPoint
DestroyMenu
SetRect
GetCapture
ReleaseCapture
SetCapture
IntersectRect
IsRectEmpty
SetRectEmpty
GetDC
ReleaseDC
DrawFocusRect
SetCursor
GetFocus
IsWindowEnabled
SetFocus
RegisterWindowMessageW
GetWindow
DrawIconEx
FrameRect
FillRect
PostMessageW
UpdateWindow
SystemParametersInfoW
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetSysColor
CreatePopupMenu
RemovePropW
GetPropW
CallWindowProcW
GetWindowLongW
SetPropW
SetWindowLongW
GetMenuItemID
GetMenuDefaultItem
BeginDeferWindowPos
OffsetRect
EndDeferWindowPos
GetSystemMenu
LoadIconW
KillTimer
SetTimer
SetParent
InflateRect
GetClassNameW
CharUpperW
GetDCEx
GetSysColorBrush
wvsprintfW
LoadStringW
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
GetDesktopWindow
TranslateAcceleratorW
LoadAcceleratorsW
EndPaint
ClientToScreen
SetMenuDefaultItem
CheckMenuRadioItem
GetCursorPos
GetKeyState
DeleteMenu
LoadMenuW
ScreenToClient
GetSubMenu
GrayStringW
DrawTextW
TabbedTextOutW
CopyRect
PtInRect
LoadBitmapW
InvalidateRect
LockWindowUpdate
GetSystemMetrics
IsWindowVisible
GetWindowRect
SetActiveWindow
SetForegroundWindow
SendMessageW
DestroyCursor
LoadCursorW
GetWindowTextA
DrawTextA
GetClassInfoA
DefDlgProcA
DefWindowProcA
BeginPaint
GetWindowDC
EndDialog
CharNextA
CallWindowProcA
RemovePropA
CreateDialogIndirectParamW
MapDialogRect
GetAsyncKeyState
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
SetDlgItemTextW
RedrawWindow
GetDlgItemInt
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
GetParent
GetClientRect
EnableWindow
IsWindow

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
IntersectClipRect
GetDeviceCaps
CreatePen
CreatePatternBrush
SetRectRgn
GetTextMetricsW
EnumFontFamiliesExW
CreateRectRgn
CombineRgn
SetTextColor
SetBkMode
CreateBitmap
SetBkColor
SaveDC
GetClipBox
CreateRectRgnIndirect
ExtSelectClipRgn
SetStretchBltMode
StretchDIBits
SetDIBitsToDevice
RestoreDC
CreateDIBSection
DeleteDC
PatBlt
SelectObject
GetBkMode
GetBkColor
DeleteObject
CreateSolidBrush
GetTextExtentPoint32W
GetTextColor
BitBlt
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
GetObjectW
CreateDIBitmap
ExtTextOutA
GetTextExtentPointA
CreateFontIndirectW

comdlg32

GetOpenFileNameW
GetSaveFileNameW
GetFileTitleW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueW
RegSetValueExW
RegCreateKeyW
RegSetValueW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegCreateKeyExW
RegQueryValueExW
RegDeleteValueW
SetFileSecurityW
GetFileSecurityW
RegEnumKeyExW

shell32

SHGetMalloc
SHGetDesktopFolder
SHGetPathFromIDListW
SHGetFileInfoW
DragQueryFileW
ExtractIconW
SHFileOperationW
SHGetSpecialFolderPathW
DragAcceptFiles
DragFinish
SHGetSpecialFolderLocation
ShellExecuteW

comctl32

_TrackMouseEvent
ImageList_GetImageInfo
ImageList_BeginDrag
ImageList_Draw
ImageList_AddMasked
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_EndDrag
ord17
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW
ImageList_Destroy
ImageList_Create
ImageList_DrawIndirect
ImageList_ReplaceIcon

ole32

CoCreateInstance
CoInitialize
CoCreateGuid
CoUninitialize

oleaut32

SysFreeString
SysAllocString

winmm

timeKillEvent
timeSetEvent

shlwapi

PathFileExistsW
PathFindExtensionW
PathMakePrettyW
PathFindFileNameW
PathRemoveFileSpecW
PathRenameExtensionW
PathIsRootW
PathIsDirectoryW
PathIsURLW

wininet

HttpQueryInfoW
InternetCrackUrlW
InternetReadFile
InternetCloseHandle
InternetOpenW
InternetConnectW
HttpOpenRequestW
HttpAddRequestHeadersW
HttpSendRequestW

Sections

.text
Size: 856KB - Virtual size: 852KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 432KB - Virtual size: 432KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

329e621298299bd079e866ab7f4fc88c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

oleaut32

winmm

shlwapi

wininet

Sections

.text Size: 856KB - Virtual size: 852KB

.rdata Size: 132KB - Virtual size: 130KB

.data Size: 92KB - Virtual size: 107KB

.rsrc Size: 432KB - Virtual size: 432KB

.text
Size: 856KB - Virtual size: 852KB

.rdata
Size: 132KB - Virtual size: 130KB

.data
Size: 92KB - Virtual size: 107KB

.rsrc
Size: 432KB - Virtual size: 432KB