bf2ce98199d1b50647d7e6114aec0d5cdb4305b103da27dedeaa4ba7fb954f3b

Sharing

Copy URL Twitter E-mail

General

Target

bf2ce98199d1b50647d7e6114aec0d5cdb4305b103da27dedeaa4ba7fb954f3b
Size

201KB
MD5

75ff529867f02baa1cbeb63d96d1990d
SHA1

bb3c5c393123355193f70a85b1ce642ead1dbe75
SHA256

bf2ce98199d1b50647d7e6114aec0d5cdb4305b103da27dedeaa4ba7fb954f3b
SHA512

052c3fad0d421a171e89efaa3a53d1481bd047be6e1a8ad84fb7a43cf186140628ac62e825001fa00b82852def03ab64180d85b7548a401c2bf7a99470d32335
SSDEEP

3072:59x+BaOwwtK/SRLKfCZD+gTWvJXxeLzrMbzd68lTcSGI3EW60rlUJie+fGH9jdT:5WBb7tZZD+gTatxFbVcUEWOJH+fGHNF

Score

N/A

Malware Config

Signatures

Files

bf2ce98199d1b50647d7e6114aec0d5cdb4305b103da27dedeaa4ba7fb954f3b
.exe windows x86

1e05ea40c7fdee66b0a534fae5367740

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
InterlockedExchange
HeapReAlloc
HeapSize
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetProcAddress
LoadLibraryA
GetModuleHandleA
GetOEMCP
GetACP
GetStringTypeW
GetStringTypeA
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapAlloc
GetCPInfo
GetLocaleInfoA
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetStartupInfoA
GetCommandLineA
GetVersionExA
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
GetLastError
LCMapStringW
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime

user32

MessageBoxA
DrawStateA
DestroyMenu
SetParent
SendNotifyMessageW
LoadBitmapA
GetOpenClipboardWindow
LoadMenuW

comctl32

ord15
ImageList_SetBkColor
ImageList_Copy
ImageList_GetImageRect
ord14
DrawStatusTextW
ImageList_GetDragImage
ImageList_GetIconSize
CreatePropertySheetPageA

shlwapi

PathUnmakeSystemFolderA
SHEnumKeyExA
PathMakePrettyW
SHOpenRegStreamW
StrTrimW
PathFindFileNameA
StrCSpnA
PathGetCharTypeA
PathRemoveExtensionW
UrlIsNoHistoryW
StrRChrA
PathFindNextComponentW
StrSpnA
SHDeleteEmptyKeyW
PathCanonicalizeA
PathIsDirectoryW

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 390KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e05ea40c7fdee66b0a534fae5367740

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comctl32

shlwapi

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 136KB - Virtual size: 135KB

.data Size: 31KB - Virtual size: 390KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 136KB - Virtual size: 135KB

.data
Size: 31KB - Virtual size: 390KB

.rsrc
Size: 3KB - Virtual size: 3KB