bf321110d75945272cb4f2b0617db2f01f467c3c2be1e28832ee59e7b4bdf5fc

Sharing

Copy URL Twitter E-mail

General

Target

bf321110d75945272cb4f2b0617db2f01f467c3c2be1e28832ee59e7b4bdf5fc
Size

784KB
MD5

ff07d1801c517292779de28d373a3211
SHA1

03cb12276a7b08d87bf4318aaf2893299ce968fc
SHA256

bf321110d75945272cb4f2b0617db2f01f467c3c2be1e28832ee59e7b4bdf5fc
SHA512

9b9d6af2d8a1f15e9b16ebe5908f055ea59d4cc935217d41201262e6c28531c0880d76bbcc063dc71b78b794b8c193f5342c2c4ff3e40e50f8c0d41fa0e0ef0d
SSDEEP

12288:P1Rzrga3tzc9YWubAEYzH7iiYLs2AV65zzj+14lx56GW2DcW6R1OU+F2Tsf:dNMzpuMEmHuXLs2hO+C2C6F2Q

Score

N/A

Malware Config

Signatures

Files

bf321110d75945272cb4f2b0617db2f01f467c3c2be1e28832ee59e7b4bdf5fc
.exe windows x86

232308ccbb3a090a69e4a29d70816dfa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExA
RegQueryInfoKeyA
RegCreateKeyA
OpenProcessToken
InitializeSecurityDescriptor
RegCreateKeyExA
ConvertStringSidToSidA
SetTokenInformation
RegSetValueExA
GetSidLengthRequired
SetSecurityDescriptorDacl
RegSetValueA
RegQueryValueExA
RegDeleteValueA
RegCloseKey
DuplicateTokenEx
RegEnumKeyExA
CreateProcessAsUserA
RegDeleteKeyA

ole32

CoTaskMemRealloc
CoInitialize
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CoLockObjectExternal
OleFlushClipboard
CLSIDFromProgID
StgOpenStorageOnILockBytes
CreateStreamOnHGlobal
CLSIDFromString

kernel32

VirtualAlloc
GetFileAttributesW
TlsAlloc
GetLastError
WriteConsoleA
GetStdHandle
GetLocaleInfoA
InterlockedExchange
SetEnvironmentVariableA
GetOEMCP
GetTimeFormatA
VirtualFree
WriteFile
ReadFile
GetCPInfo
SetEvent
GetDateFormatA
DeleteCriticalSection
GetCurrentProcessId
LCMapStringW
LeaveCriticalSection
GetCurrentThread
QueryPerformanceCounter
GlobalAlloc
FreeEnvironmentStringsW
CompareStringA
GetLocaleInfoW
SetFilePointer
LoadLibraryA
GetCurrentThreadId
GetCurrentProcess
GetConsoleCP
HeapAlloc
SetStdHandle
GetStartupInfoA
TerminateProcess
GetFileType
CreateFileA
RaiseException
GetProcAddress
LockResource
GetACP
CreateDirectoryW
CreateMutexW
EnterCriticalSection
UnmapViewOfFile
ExitProcess
GetModuleHandleW
TlsSetValue
lstrcmpiW
InitializeCriticalSection
FreeEnvironmentStringsA
GetModuleHandleA
GetEnvironmentStringsW
GetTickCount
GetVersionExA
DeleteFileW
FindClose
WriteConsoleW
FlushFileBuffers
SetLastError
LocalFileTimeToFileTime
HeapCreate
TlsGetValue
GetConsoleOutputCP
GetTimeZoneInformation
GetCommandLineW
InterlockedIncrement
GlobalHandle
GetModuleFileNameA
GetStringTypeA
LoadLibraryW
CompareStringW
HeapDestroy
SetCurrentDirectoryW
CloseHandle
GetVolumeInformationW
lstrcatW
MultiByteToWideChar
IsValidCodePage
HeapFree
SetHandleCount
IsDebuggerPresent
GetProcessHeap
UnhandledExceptionFilter
lstrcpyW
RtlUnwind
Sleep
GetWindowsDirectoryW
GetLocalTime
GetStartupInfoW
LCMapStringA
GetCommandLineA
FileTimeToLocalFileTime
GetModuleFileNameW
InterlockedDecrement
GetConsoleMode
GetSystemTimeAsFileTime
GetStringTypeW
TlsFree
GetEnvironmentStrings
WaitForSingleObject
VirtualQuery
WideCharToMultiByte
HeapReAlloc
SetUnhandledExceptionFilter
FindFirstFileW
HeapSize
GetDriveTypeW

mfc42

ord1576

gdi32

SelectClipRgn
ScaleWindowExtEx
SetWindowOrgEx
StretchBlt
EndDoc
ScaleViewportExtEx
EndPage
GetROP2
GetTextCharsetInfo
PtInRegion
SetViewportOrgEx
IntersectClipRect
CreatePen
Rectangle
ExtCreateRegion
StartPage
ExcludeClipRect

user32

OpenClipboard
AppendMenuW
SetWindowRgn
SetWindowsHookExW
GetWindowLongW
GetSysColor
MessageBoxW
GetDlgItem
SendDlgItemMessageW
LoadAcceleratorsW
ValidateRect
GetWindowTextLengthW
DestroyIcon
GetMenu
SetScrollInfo
BeginDeferWindowPos
TrackPopupMenu
SetFocus
ShowWindow
LoadCursorW
LoadImageW
GetClassNameW
EndDeferWindowPos
GetMenuItemCount
RegisterClassW
CreateDialogIndirectParamW
DefWindowProcW
GetMessageTime
EnumChildWindows
SetClassLongW
RegisterClassExW
RegisterWindowMessageW
ReuseDDElParam
SetParent
GetDoubleClickTime
FillRect
ScreenToClient
SetDlgItemInt
ScrollWindow
FindWindowW
CreateWindowExW
GetMenuCheckMarkDimensions
GetMenuDefaultItem
GetForegroundWindow
GetMenuState
GetScrollInfo
IntersectRect
InvalidateRect
GetClipboardData
MapWindowPoints
GetDlgCtrlID
MessageBeep
CloseClipboard
EndPaint
DestroyCaret
GetKeyState
LoadIconW
SetMenuItemBitmaps
IsZoomed
ClientToScreen
SystemParametersInfoA
DrawStateW
SetCapture
BeginPaint
SetTimer
DrawFrameControl
GetMessagePos
InsertMenuW
SendMessageW
UnionRect
GetWindowTextW
ModifyMenuW
SetCursor
GetSubMenu
DeferWindowPos
SetClipboardData
CreateAcceleratorTableW
SetRectEmpty
GetSysColorBrush
GetWindowThreadProcessId
GetActiveWindow
GetClassInfoExW
LoadBitmapW
DestroyWindow
LoadStringW
CheckMenuItem
WindowFromPoint
SetWindowPos
CopyRect
CharUpperW
SetScrollPos
MoveWindow
RegisterClipboardFormatW
GetParent
IsWindowVisible
InflateRect
KillTimer
CreatePopupMenu
GetAsyncKeyState
EnableWindow
UpdateWindow
PostQuitMessage

shell32

SHGetPathFromIDListA
SHGetMalloc
SHBrowseForFolderA
ShellExecuteA

comctl32

ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_Remove
ImageList_GetIcon
ImageList_DragMove
ImageList_Create
CreatePropertySheetPageA
DestroyPropertySheetPage
ImageList_LoadImageA
ImageList_Replace
ImageList_GetImageInfo
ImageList_EndDrag
ImageList_Add
PropertySheetA
ImageList_SetBkColor
ImageList_GetImageCount
ord17
_TrackMouseEvent
InitCommonControlsEx
ImageList_Draw
ImageList_DragEnter

Sections

.text
Size: 124KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 480KB - Virtual size: 478KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

232308ccbb3a090a69e4a29d70816dfa

Headers

File Characteristics

Imports

advapi32

ole32

kernel32

mfc42

gdi32

user32

shell32

comctl32

Sections

.text Size: 124KB - Virtual size: 120KB

.rdata Size: 480KB - Virtual size: 478KB

.data Size: 112KB - Virtual size: 122KB

.rsrc Size: 64KB - Virtual size: 63KB

.text
Size: 124KB - Virtual size: 120KB

.rdata
Size: 480KB - Virtual size: 478KB

.data
Size: 112KB - Virtual size: 122KB

.rsrc
Size: 64KB - Virtual size: 63KB