bbcb2b48db8ebadce9826f61939b2733f3637878bc3fb9aa891b2aa83e1f2a53

Sharing

Copy URL Twitter E-mail

General

Target

bbcb2b48db8ebadce9826f61939b2733f3637878bc3fb9aa891b2aa83e1f2a53
Size

1.0MB
MD5

09cf898f759c20cbd3314d6003d0f0c0
SHA1

ab3e581feaf8ac5aebac007763336008d1dd3906
SHA256

bbcb2b48db8ebadce9826f61939b2733f3637878bc3fb9aa891b2aa83e1f2a53
SHA512

91aac210a2618d9479cc573fff89e1a72624521143654d863285ba55c79d839f6b58ad3474117d271745aa2d2d82787f41ac9a1e2c395fdbede1c32215d9a0ca
SSDEEP

12288:h6UC5TgioXBlL8sxmJgpCgcleP/G8Rr3jdnUPFlOj3fTfzMhL/Jfw:h6p5TgioX0sxmJAcliG8ZdUPLU7w

Score

N/A

Malware Config

Signatures

Files

bbcb2b48db8ebadce9826f61939b2733f3637878bc3fb9aa891b2aa83e1f2a53
.exe windows x86

211f2d7ccf5f19ecf48ef124cba12266

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiOpenDevRegKey
SetupFindFirstLineA
SetupFindNextLine
SetupGetStringFieldA
SetupDefaultQueueCallbackA
SetupPromptReboot

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

winmm

waveOutOpen
waveOutClose

shell32

SHChangeNotify
ShellExecuteExA
ExtractIconA
ord680
ShellExecuteA

crypt32

CertEnumCertificatesInStore
CertCompareCertificate
CertFreeCertificateContext
CertCloseStore
CertOpenStore
CertAddCertificateContextToStore

kernel32

lstrcpynA
GetCurrentProcess
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
MulDiv
DuplicateHandle
MoveFileA
GetVolumeInformationA
GetCurrentThread
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
UnlockFile
SetEndOfFile
SuspendThread
EnterCriticalSection
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalFlags
GetProcessVersion
GetCPInfo
GetOEMCP
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileAttributesA
GetFileSize
GetFileTime
SetErrorMode
SetThreadPriority
GlobalHandle
TlsAlloc
TlsFree
GetStartupInfoA
GetCommandLineA
RtlUnwind
ResumeThread
CreateThread
ExitThread
SetStdHandle
GetFileType
HeapReAlloc
HeapSize
GetTimeZoneInformation
GetACP
CompareStringA
CompareStringW
LCMapStringA
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
GetDriveTypeA
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
GetLocaleInfoA
GetLocaleInfoW
SetEnvironmentVariableA
GetLocalTime
GlobalGetAtomNameA
RemoveDirectoryA
GetCurrentThreadId
LoadLibraryA
FreeLibrary
OpenProcess
TerminateProcess
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GlobalLock
GlobalUnlock
LockResource
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
DeviceIoControl
GetExitCodeProcess
GlobalFree
WaitForMultipleObjects
SetLastError
MultiByteToWideChar
CreateToolhelp32Snapshot
Process32First
WritePrivateProfileStringA
Process32Next
CloseHandle
GetTickCount
CreateMutexA
HeapFree
GetProcessHeap
HeapAlloc
LoadResource
FindResourceA
SizeofResource
SetCommState
GetFullPathNameA
GetCommState
EscapeCommFunction
SetCommTimeouts
SetupComm
GlobalAlloc
CreateFileA
GetCurrentProcessId
lstrlenA
OpenEventA
SetEvent
GetVersionExA
LocalAlloc
LocalFree
CreateProcessA
GetSystemInfo
GetTempPathA
GetShortPathNameA
GetVersion
MoveFileExA
CopyFileA
GetPrivateProfileSectionA
WritePrivateProfileSectionA
GetSystemDirectoryA
GetFileAttributesExA
SetFileAttributesA
lstrcmpA
GetWindowsDirectoryA
GetProcAddress
WaitForSingleObject
Sleep
CreateEventA
GetLastError
GetModuleFileNameA
lstrcatA
CreateDirectoryA
lstrcpyA
FindClose
FindFirstFileA
FindNextFileA
ExitProcess
DeleteFileA
RaiseException
GetCurrentDirectoryA

user32

SetWindowTextA
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
IsDialogMessageA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
ClientToScreen
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
PostQuitMessage
SetCursor
GetClassNameA
PtInRect
LoadCursorA
DestroyMenu
CharUpperA
GetSysColorBrush
IsWindowVisible
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenuItemID
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
ShowWindow
GetSystemMetrics
SetWindowPos
MessageBoxA
GetDC
LoadIconA
DrawIconEx
DrawIcon
KillTimer
SetTimer
InvalidateRect
InflateRect
IsRectEmpty
GetClientRect
GetSysColor
wsprintfA
SendMessageA
EnableWindow
FindWindowA
AttachThreadInput
BringWindowToTop
PostMessageA
LoadStringA
EnumWindows
GetWindowTextA
GetWindowThreadProcessId
GetFocus
UpdateWindow
GetMenu
IsWindow
SetFocus
PeekMessageA
SendDlgItemMessageA
MapWindowPoints
DispatchMessageA
AdjustWindowRectEx
GetMenuItemCount
CopyRect
GetSubMenu
GetActiveWindow
EndDialog
GetWindowRect
SetActiveWindow
UnregisterClassA

gdi32

CreatePen
GetClipBox
SetTextColor
GetObjectA
CreateBitmap
SetBkColor
SaveDC
DeleteDC
SelectObject
GetStockObject
RestoreDC
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
DeleteObject
CreateSolidBrush
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
Rectangle

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

AddAccessAllowedAce
RegEnumValueA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegQueryInfoKeyA
AllocateAndInitializeSid
GetLengthSid
InitializeAcl
RegCloseKey
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetKeySecurity
FreeSid
RegEnumKeyA
RegSetValueExA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA

comctl32

ord17

ole32

CoCreateInstance
CoInitialize

olepro32

ord251

Sections

.text
Size: 600KB - Virtual size: 597KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

211f2d7ccf5f19ecf48ef124cba12266

Headers

File Characteristics

Imports

setupapi

version

winmm

shell32

crypt32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

ole32

olepro32

Sections

.text Size: 600KB - Virtual size: 597KB

.rdata Size: 68KB - Virtual size: 65KB

.data Size: 68KB - Virtual size: 81KB

.rsrc Size: 256KB - Virtual size: 252KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 600KB - Virtual size: 597KB

.rdata
Size: 68KB - Virtual size: 65KB

.data
Size: 68KB - Virtual size: 81KB

.rsrc
Size: 256KB - Virtual size: 252KB

.rmnet
Size: 60KB - Virtual size: 60KB