bd242e163bfb4ce8311dec652877643ba9efd0e07db6f027b096627ce7d05bb8

Sharing

Copy URL

Twitter E-mail

General

Target

bd242e163bfb4ce8311dec652877643ba9efd0e07db6f027b096627ce7d05bb8
Size

163KB
MD5

5ae7ae996acf9f1b14b5d7a43371a5c0
SHA1

1e39c7474ec192eba6221cd340278a778747a177
SHA256

bd242e163bfb4ce8311dec652877643ba9efd0e07db6f027b096627ce7d05bb8
SHA512

2d951ba5cb41a90e203157684fb4cd32a0dba43dc52ebf0c57a0ca780dc0480ad14f29276e802572e6109d643b244c5b034e373e17bfd2e6e54030dcf04d5d0d
SSDEEP

3072:5Q+GeLrzWPn/0TikrWZzoInUQA2JLM89bYU5ybN2SGEZNACEfAPu2JMPJ/:qH/IiXEIzP15ybN2STID

Score

N/A

Malware Config

Signatures

Files

bd242e163bfb4ce8311dec652877643ba9efd0e07db6f027b096627ce7d05bb8
.exe windows x86

45dfc3efb9f16609750aad30bab2779d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantClear
SysAllocStringLen
SysFreeString
SysStringLen
SysReAllocStringLen
VariantChangeTypeEx
VariantCopyInd

ole32

IsEqualGUID

advapi32

RegOpenKeyA
LookupPrivilegeValueA
OpenProcessToken
RegOpenKeyExA
RegDeleteKeyA
RegCloseKey
RegQueryValueExA
RegDeleteValueA
AdjustTokenPrivileges

user32

DestroyMenu
LoadStringA
DefMDIChildProcA
GetFocus
SetScrollInfo
IsWindowEnabled
CreateIcon
ExitWindowsEx
SetWindowLongA
GetKeyNameTextA
TranslateMessage
MapVirtualKeyA
GetMenu
SetActiveWindow
GetWindow
SendMessageA
DefFrameProcA
IntersectRect
LoadBitmapA
GetWindowTextA
CreateWindowExA
GetWindowLongA
PeekMessageA
KillTimer
DrawFrameControl
CreatePopupMenu
RemoveMenu
GetDesktopWindow
IsRectEmpty
GetMenuItemID
LoadIconA
PtInRect
GetLastActivePopup
ScrollWindow
DrawTextA
WindowFromPoint
GetActiveWindow
GetKeyboardState
InvalidateRect
EqualRect
GetTopWindow
CallWindowProcA
UpdateWindow
RedrawWindow
SetClassLongA
IsWindow
SetWindowPos
ClientToScreen
CheckMenuItem
GetWindowRect
GetMenuItemInfoA
GetMenuStringA
DrawIconEx
RegisterClipboardFormatA
GetCursor
GetPropA
SetScrollRange
IsZoomed
GetClipboardData
DrawIcon
GetCursorPos
GetDCEx
RegisterClassA
CharNextA
GetKeyState
SetMenu
SetCursor
LoadCursorA
SetMenuItemInfoA
UnregisterClassA
IsDialogMessageA
FindWindowA
EndPaint
BeginPaint
wsprintfA
AdjustWindowRectEx
GetForegroundWindow
CreateMenu
UnhookWindowsHookEx
DestroyWindow
SetWindowPlacement
IsIconic
SetScrollPos
MessageBoxA
TranslateMDISysAccel
GetWindowPlacement
DispatchMessageA
GetWindowDC
GetClassInfoA
EnableMenuItem
MapWindowPoints
GetWindowThreadProcessId
ScreenToClient
FillRect
TrackPopupMenu
SetCapture
DeleteMenu
DrawEdge
ShowOwnedPopups
SetPropA
EnumWindows
GetSystemMetrics
SetRect
GetMenuItemCount
GetMenuState
IsWindowVisible
InflateRect
CharLowerBuffA
ShowCursor
GetScrollRange
ShowWindow
SetWindowsHookExA
DestroyIcon
CallNextHookEx
GetCapture
GetIconInfo
WinHelpA
GetDC
GetScrollPos
PostQuitMessage
GetKeyboardLayoutList
InsertMenuA
OffsetRect
LoadKeyboardLayoutA
IsChild
DestroyCursor
PostMessageA
OemToCharA
CharLowerA
GetScrollInfo
SetForegroundWindow
GetClientRect
ActivateKeyboardLayout
InsertMenuItemA
EnumThreadWindows
SetTimer
FrameRect
SetFocus
SystemParametersInfoA
RegisterWindowMessageA
DefWindowProcA
GetKeyboardLayout
ReleaseCapture
GetSystemMenu
EnableWindow
GetSubMenu
EnableScrollBar
GetSysColor
ReleaseDC
DrawMenuBar
GetKeyboardType
RemovePropA
ShowScrollBar
WaitMessage

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

GetCPInfo
GetLocalTime
GetPrivateProfileStringA
GetStringTypeW
EnterCriticalSection
FreeLibrary
lstrcpynA
GetTickCount
GetThreadLocale
Sleep
CompareStringA
RtlUnwind
WriteFile
GetVersionExA
GetStdHandle
GetCurrentProcessId
CreateFileA
SetLastError
InitializeCriticalSection
GetModuleHandleA
LockResource
GetVersion
lstrcmpA
HeapAlloc
WinExec
EnumCalendarInfoA
GetLocaleInfoA
GetCurrentProcess
GlobalLock
GlobalUnlock
lstrcpyA
GetProcAddress
TlsSetValue
TlsGetValue
GetWindowsDirectoryA
LocalFree
SetEndOfFile
FindClose
GlobalReAlloc
TlsFree
TlsAlloc
GetFileType
GetProcessHeap
GetACP
WaitForSingleObject
GetModuleFileNameA
lstrlenA
LoadLibraryExA
InterlockedIncrement
LoadLibraryA
GlobalAlloc
LocalAlloc
SetFilePointer
CreateEventA
VirtualQuery
SizeofResource
ReadFile
SetConsoleCtrlHandler
GetFileSize
SetErrorMode
FreeResource
GetCommandLineA
VirtualAlloc
SetEvent
GlobalFree
GlobalDeleteAtom
GetDiskFreeSpaceA
FormatMessageA
DeleteFileA
WideCharToMultiByte
GetCurrentThreadId
UnhandledExceptionFilter
HeapFree
ExitProcess
SetHandleCount
GetStartupInfoA
RaiseException
FindResourceA
GetEnvironmentStringsA
CreateThread
GlobalAddAtomA
GetSystemDirectoryA
GetSystemInfo
MulDiv
LeaveCriticalSection
FindFirstFileA
GetOEMCP
DeleteCriticalSection
CloseHandle
VirtualFree
MultiByteToWideChar
GetLastError
GlobalHandle
LoadResource
InterlockedDecrement
SetThreadLocale

Sections

.text
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45dfc3efb9f16609750aad30bab2779d

Headers

File Characteristics

Imports

oleaut32

ole32

advapi32

user32

version

kernel32

Sections

.text Size: 138KB - Virtual size: 137KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 13KB - Virtual size: 14KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 138KB - Virtual size: 137KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 13KB - Virtual size: 14KB

.rsrc
Size: 2KB - Virtual size: 1KB