bdcf0d481156b07524228bc44149e5ba660a49675b6b315c8931fb4a9306beda

Sharing

Copy URL

Twitter E-mail

General

Target

bdcf0d481156b07524228bc44149e5ba660a49675b6b315c8931fb4a9306beda
Size

179KB
MD5

c700c52e4e4b34602fc4a5fa530fa7e9
SHA1

faf31a9de6d7d52311852cb6f7a1ca188c66bbf1
SHA256

bdcf0d481156b07524228bc44149e5ba660a49675b6b315c8931fb4a9306beda
SHA512

28bf72b6ef08103e2facfe0b7cc0f81e793245feaba462da08636482c8d75cf9bdf55179456c2e7136b8b681339440b1a76e7d07099575a9b9e9ab8fbab8666b
SSDEEP

3072:dLpxTJJWCXx7vCgeQ263Ju32o5MqLEC7yfCSlb4+2FYK/ZDBq:dt9RdvCg7YgCq4+m/xw

Score

N/A

Malware Config

Signatures

Files

bdcf0d481156b07524228bc44149e5ba660a49675b6b315c8931fb4a9306beda
.exe windows x86

4aea44519cce6708b69613bf58b08459

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ExitWindowsEx
DispatchMessageA
DestroyWindow
CreateWindowExA
CallWindowProcA
CharPrevA
LoadStringA
MsgWaitForMultipleObjects
PeekMessageA
SetWindowLongA
TranslateMessage
MessageBoxA
TrackPopupMenuEx
GetScrollBarInfo
ReleaseCapture
SetDlgItemTextA
DdeEnableCallback
GetClassInfoW
SetThreadDesktop
LookupIconIdFromDirectory
GetInputState
SystemParametersInfoW
MapVirtualKeyW
UnregisterDeviceNotification
TrackPopupMenu

ole32

OleSaveToStream
CoSuspendClassObjects
OleCreateLink
OleIsRunning
CreateBindCtx
CoFreeUnusedLibraries
CoGetTreatAsClass
CoRegisterMessageFilter

advapi32

OpenProcessToken
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
LookupPrivilegeValueA

gdi32

CreateColorSpaceA
CreateColorSpaceW
CreateDCA
ArcTo
CloseMetaFile

opengl32

glEnable
glNormal3bv
glClearStencil
glRasterPos4fv
glTexCoord2sv
glEvalCoord2d
glTexParameteri
glFinish

dbghelp

SymFunctionTableAccess64
SymGetLinePrev
DbgHelpCreateUserDumpW
SymInitialize
SymUnloadModule64
SymGetSymFromName64
SymGetSymFromAddr

kernel32

UnhandledExceptionFilter
TerminateProcess
GetStringTypeW
GetStringTypeA
LCMapStringW
WriteConsoleA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
HeapReAlloc
VirtualAlloc
InitializeCriticalSection
RtlUnwind
GetOEMCP
GetCPInfo
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
VirtualProtect
VirtualQuery
LCMapStringA
SearchPathA
HeapAlloc
GetCurrentProcessId
QueryPerformanceCounter
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetCurrentThreadId
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetTempPathA
FindFirstFileA
FindNextFileA
FindClose
SetFilePointer
MulDiv
ReadFile
WriteFile
GetPrivateProfileStringA
WritePrivateProfileStringA
MultiByteToWideChar
FreeLibrary
LoadLibraryExA
WaitForSingleObject
GlobalAlloc
GlobalFree
ExpandEnvironmentStringsA
lstrcmpA
lstrcmpiA
GetVersion
GetSystemDirectoryA
lstrcatA
lstrlenA
GetTempFileNameA
RemoveDirectoryA
CreateThread
GlobalLock
GlobalUnlock
GetDiskFreeSpaceA
lstrcpynA
LoadLibraryA
SetErrorMode
SetFileTime
ExitProcess
CopyFileA
GetTickCount
Sleep
SetFileAttributesA
SetCurrentDirectoryA
MoveFileA
GetShortPathNameA
CompareFileTime
CloseHandle
CreateDirectoryA
CreateFileA
CreateProcessA
DeleteFileA
FindResourceA
FormatMessageA
GetACP
GetCommandLineA
GetCurrentProcess
GetEnvironmentVariableA
GetExitCodeProcess
GetFileAttributesA
GetFileSize
GetFullPathNameA
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetSystemDefaultLCID
GetSystemInfo
GetUserDefaultLangID
GetVersionExA
GetWindowsDirectoryA
IsDBCSLeadByte
SetWaitableTimer
CreateWaitableTimerA
GetProfileStringA
GlobalDeleteAtom
EndUpdateResourceW
OpenJobObjectA
CreateFileMappingA
SetCommBreak
GetSystemTimeAsFileTime
GetStartupInfoA
EnterCriticalSection
LeaveCriticalSection
OutputDebugStringA
RaiseException
SetUnhandledExceptionFilter
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
GetModuleHandleW

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4aea44519cce6708b69613bf58b08459

Headers

DLL Characteristics

File Characteristics

Imports

user32

ole32

advapi32

gdi32

opengl32

dbghelp

kernel32

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 37KB - Virtual size: 47KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 37KB - Virtual size: 47KB

.rsrc
Size: 25KB - Virtual size: 25KB