bcb4c09456ddc643ad0ad5eae270d515849c99db190e8d0ccf42a86f5f9065cb

Sharing

Copy URL Twitter E-mail

General

Target

bcb4c09456ddc643ad0ad5eae270d515849c99db190e8d0ccf42a86f5f9065cb
Size

221KB
MD5

1600e4e914e9b49511ca57e042fb1f50
SHA1

35f045b511c3036c51d5045616616baf203f00c4
SHA256

bcb4c09456ddc643ad0ad5eae270d515849c99db190e8d0ccf42a86f5f9065cb
SHA512

b5b09ce695a27093c27671894df57d662436c6895d2fd159d137c12c0245fe63106081cfcabeb03c857a13d3b7013f6beeb2f05c6f20333b25f571d2cab23e44
SSDEEP

3072:UPhGooF+ZmcBwC5tolXbuCnY0SNVVmLtyV8IXYtWXaI4QEn6cbKjTKgLuuRSzbYv:UPQt6ntolSCnV+uzNkLu0IMW9m

Score

N/A

Malware Config

Signatures

Files

bcb4c09456ddc643ad0ad5eae270d515849c99db190e8d0ccf42a86f5f9065cb
.exe windows x86

846b3a825eef0dfe13acab986946b422

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

Shell_NotifyIconA
DragQueryFileA
DragFinish

gdi32

CreateFontIndirectA
PolyPolyline
SelectClipRgn
GetEnhMetaFileBits
GetTextMetricsA
CreatePenIndirect
SetStretchBltMode
CreateSolidBrush
GetDIBits
DeleteObject
SetPixel
IntersectClipRect
GetBrushOrgEx
CreateHalftonePalette
SetWinMetaFileBits
SetROP2
GetClipBox
RectVisible
SetEnhMetaFileBits
CreateCompatibleDC
GetDeviceCaps
LineTo
SetBkMode
GetEnhMetaFileHeader
GetPaletteEntries
ExtCreatePen
GetWindowOrgEx
MaskBlt
GetCurrentPositionEx
SetTextColor
ExcludeClipRect
GetObjectA
RealizePalette
SetViewportExtEx
CopyEnhMetaFileA
BitBlt
SaveDC
SetViewportOrgEx
GetWinMetaFileBits
GetDCOrgEx
SetBrushOrgEx
GetSystemPaletteEntries
CreateBitmap
CreateDIBSection
SetBkColor
CreateDIBitmap
SetWindowOrgEx

advapi32

RegOpenKeyA
RegQueryValueA
RegCloseKey

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

comctl32

ord17
ImageList_Destroy

kernel32

lstrcpynW
GetTickCount
FileTimeToSystemTime
GetSystemTimeAsFileTime
LoadLibraryW
GetLastError
UnhandledExceptionFilter
FormatMessageW
FreeLibrary
GetDateFormatW
GetFullPathNameW
VirtualFree
lstrcpyW
GetModuleHandleA
GetTempPathW
GetProcAddress
GetCurrentProcess
GetCurrentProcessId
LocalFree
ExitProcess
CloseHandle
VirtualAlloc
GetCommandLineA
GetFileAttributesW
QueryPerformanceCounter
lstrlenW

msvcrt

_initterm
__winitenv
_cexit
exit
_except_handler3
_wcsnicmp
__wgetmainargs
__set_app_type
wcsrchr
_controlfp
fclose
__p__fmode
__p__commode
_adjust_fdiv
_XcptFilter
wcscmp
fwprintf
wcscat
_wcsicmp
wcschr
_c_exit
_exit

Sections

.text
Size: 158KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

846b3a825eef0dfe13acab986946b422

Headers

File Characteristics

Imports

shell32

gdi32

advapi32

winspool.drv

comctl32

kernel32

msvcrt

Sections

.text Size: 158KB - Virtual size: 157KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 46KB - Virtual size: 46KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 158KB - Virtual size: 157KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 46KB - Virtual size: 46KB

.rsrc
Size: 10KB - Virtual size: 10KB