bdcd31e794ca8ce22a817470e45f044ff842be98055d29bf6466de50c2cec167

Sharing

Copy URL

Twitter E-mail

General

Target

bdcd31e794ca8ce22a817470e45f044ff842be98055d29bf6466de50c2cec167
Size

780KB
MD5

0a0fae3556db3c976c26fa3b59961ab3
SHA1

2e6a3ac28e0c8dd4749bf6dbb8b3eee671bad240
SHA256

bdcd31e794ca8ce22a817470e45f044ff842be98055d29bf6466de50c2cec167
SHA512

85efb1db01bf50ae80faf8e1b5788bfbdb04b4c7ccd03397bc5cc98d6d839e9fa5a81b9aa12d76ff504967d09cea8839f3787e48ecb98ed6f2bd81fcb64205a7
SSDEEP

24576:P17zQAhVI1n6A/0vuTR0+h7bLDBkkdyH6:PpQAhOn6ADTXO2

Score

N/A

Malware Config

Signatures

Files

bdcd31e794ca8ce22a817470e45f044ff842be98055d29bf6466de50c2cec167
.exe windows x86

cdeabb4c25748070c5d212572c8b078d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

PtInRegion
CreateCompatibleDC
SetBkMode
RestoreDC
Rectangle
ScaleWindowExtEx
DeleteObject
GetRegionData
SetROP2
GetObjectW
SelectObject
GetTextMetricsW
CreateBitmap
BitBlt
ExtTextOutW
TextOutW
CreateDCW
SaveDC
ExcludeClipRect
GetStockObject
DeleteDC
CreateFontIndirectW
CreateSolidBrush
StretchBlt
ScaleViewportExtEx
CreatePen
GetDeviceCaps
SetAbortProc

oleaut32

LoadTypeLi

comdlg32

GetFileTitleA
PageSetupDlgA
ChooseColorA
ChooseFontA
GetOpenFileNameA
PrintDlgA
GetSaveFileNameA

user32

MessageBoxW
LoadImageW
InvalidateRect
GetSysColorBrush
wsprintfW
CreateWindowExW
SetWindowPos
DestroyWindow
LoadAcceleratorsW
GetMenuItemID
GetDC
DestroyAcceleratorTable
ClientToScreen
LoadIconW
ShowWindow
LoadBitmapW
GetWindow
DefWindowProcW
RegisterClassExW
DrawStateW
LoadMenuW
EnableWindow
GetMessageW
LoadCursorW
DestroyIcon
RegisterClassW

kernel32

EnterCriticalSection
GetStartupInfoA
GetCurrentProcessId
GetModuleHandleW
HeapCreate
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetTimeZoneInformation
VirtualAlloc
GetSystemTimeAsFileTime
RtlUnwind
MultiByteToWideChar
InterlockedIncrement
GetFileType
GetProcAddress
LeaveCriticalSection
GetModuleHandleA
WideCharToMultiByte
InitializeCriticalSectionAndSpinCount
UnhandledExceptionFilter
ExitProcess
VirtualFree
LCMapStringA
GetTimeFormatA
FlushFileBuffers
HeapAlloc
SetLastError
CreateMutexW
GetTickCount
GetCurrentProcess
SetFilePointer
CloseHandle
SetStdHandle
GetConsoleCP
GetCPInfo
GetStringTypeW
LoadLibraryA
VirtualQuery
GetModuleFileNameW
ReadFile
IsDebuggerPresent
InitializeCriticalSection
WriteConsoleA
SetEnvironmentVariableA
TlsSetValue
GetCommandLineW
GetStartupInfoW
DeleteCriticalSection
CompareStringA
SetHandleCount
TlsAlloc
FreeEnvironmentStringsW
InterlockedExchange
CreateFileA
TlsGetValue
GetACP
GetModuleFileNameA
LoadLibraryW
InterlockedDecrement
IsValidCodePage
GetEnvironmentStringsW
GetConsoleMode
GetLastError
Sleep
CompareStringW
RaiseException
GetDateFormatA
GetStdHandle
HeapSize
LCMapStringW
WriteConsoleW
HeapReAlloc
WriteFile
HeapFree
TerminateProcess
TlsFree
GetOEMCP
GetConsoleOutputCP
GetLocaleInfoA
GetCurrentThreadId
GetStringTypeA

ole32

OleGetIconOfClass
CLSIDFromString
CoTaskMemFree
CoGetClassObject
CreateGenericComposite
CreateBindCtx
OleSetMenuDescriptor
OleLoad
OleCreateLinkToFile
OleSave
StringFromCLSID
CreateItemMoniker
CoDisconnectObject
RevokeDragDrop
StgCreateDocfile
OleRun
CreateILockBytesOnHGlobal
OleLockRunning
CoTaskMemAlloc
CLSIDFromProgID
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
CoRegisterClassObject
CoLockObjectExternal
StgIsStorageFile
CreateStreamOnHGlobal
StgCreateDocfileOnILockBytes
OleInitialize
WriteClassStg
OleCreateLinkFromData
ReleaseStgMedium
OleCreateFromFile
WriteClassStm
CoRevokeClassObject
CoCreateInstance
OleUninitialize
OleIsCurrentClipboard
OleDuplicateData
CreateFileMoniker
GetHGlobalFromILockBytes
OleCreate
CreateDataAdviseHolder
OleSetContainedObject
OleRegGetUserType
StringFromGUID2

advapi32

OpenSCManagerA
RegCreateKeyA
OpenServiceA
RegSetValueA
LookupPrivilegeValueA
RegEnumKeyExA
RegEnumValueA
QueryServiceConfigA

shell32

SHChangeNotify
DragQueryFileA
Shell_NotifyIconA
SHGetPathFromIDListA

Sections

.text
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 470KB - Virtual size: 469KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cdeabb4c25748070c5d212572c8b078d

Headers

File Characteristics

Imports

gdi32

oleaut32

comdlg32

user32

kernel32

ole32

advapi32

shell32

Sections

.text Size: 125KB - Virtual size: 124KB

.rdata Size: 470KB - Virtual size: 469KB

.data Size: 114KB - Virtual size: 121KB

.rsrc Size: 70KB - Virtual size: 70KB

.text
Size: 125KB - Virtual size: 124KB

.rdata
Size: 470KB - Virtual size: 469KB

.data
Size: 114KB - Virtual size: 121KB

.rsrc
Size: 70KB - Virtual size: 70KB