bfb064042e1f37bddc1e25e8480adeab14cbb773a9676df518b95733e6d89e46

Sharing

Copy URL Twitter E-mail

General

Target

bfb064042e1f37bddc1e25e8480adeab14cbb773a9676df518b95733e6d89e46
Size

751KB
MD5

5e4210610b083c64ed402028ed973c6e
SHA1

a79637c54a023a5f8ad9eb9b77b71f49375961d9
SHA256

bfb064042e1f37bddc1e25e8480adeab14cbb773a9676df518b95733e6d89e46
SHA512

7824d7e84c9096b4e188585ef650ccef154b69723fc2ffd9e84b92914689bd3932a55e827f2242a60c0c97c5b150ffe56ce774de7fd97af7a7d25ef83d91bba4
SSDEEP

12288:fZNuZmHAKtQHxr3AWSPSncvhCMciqIXnZUmDmddUfs9jkbS4YnlOyPXatZaLkTI8:BNu2hQyWTcvXXnXDmD26jkbS4YnsI0aK

Score

N/A

Malware Config

Signatures

Files

bfb064042e1f37bddc1e25e8480adeab14cbb773a9676df518b95733e6d89e46
.exe windows x86

f70072720695b68c343a9b7d595b1751

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetCommandLineA
ExitProcess
HeapAlloc
GetProcessHeap
VirtualAlloc
Sleep
VirtualFree
UnmapViewOfFile
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
InterlockedCompareExchange
GetCPInfo
GetCommandLineW
GetEnvironmentStrings
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
LeaveCriticalSection
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
GetProcAddress
FindNextFileA
CompareStringA
CompareStringW
WaitForMultipleObjects
DeleteFileW
DeleteFileA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
QueryPerformanceCounter
FreeLibrary
lstrcmpiA
GetVersion
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
SetEndOfFile
GlobalAlloc
TerminateProcess
SetEnvironmentVariableA
CreateThread
GetLocalTime
MultiByteToWideChar
UnhandledExceptionFilter
LoadLibraryExA
GetFileAttributesW
GetModuleFileNameA
GetVersionExA
TlsGetValue
OutputDebugStringA
FormatMessageA
InterlockedDecrement
FindClose
GlobalLock
LoadResource
InitializeCriticalSection
LocalFree
SetEvent
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
WideCharToMultiByte
SetStdHandle
FreeEnvironmentStringsW
SetErrorMode
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentProcess
SetUnhandledExceptionFilter
HeapDestroy
GetDriveTypeA
WaitForSingleObject
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
GetCurrentThread
GetCurrentProcessId
GetLastError
GetTickCount
SetHandleCount
GetCurrentThreadId

user32

LoadCursorA
GetDlgItem
CreateWindowExA
CheckMenuItem
SetWindowTextA
DefWindowProcA
SetFocus
EndPaint
DispatchMessageA
FillRect
SetTimer
GetWindowLongA
RegisterClassA
EnableMenuItem
SetForegroundWindow
LoadStringA
PeekMessageA
GetDesktopWindow
ShowWindow
UpdateWindow
GetParent
GetMessageA
DestroyWindow
TranslateMessage
GetCursorPos
GetDC
IsWindow
SetWindowPos
PostQuitMessage
SystemParametersInfoA
IsWindowVisible
InvalidateRect
GetClientRect
CallWindowProcA
SetCursor
EndDialog
MessageBoxA
EnableWindow
GetSysColor

gdi32

CreateSolidBrush
CreateCompatibleDC
GetStockObject
BitBlt
SelectObject

oleaut32

SysAllocStringLen
SysStringLen
SysFreeString

Sections

.text
Size: 716KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f70072720695b68c343a9b7d595b1751

Headers

File Characteristics

Imports

kernel32

user32

gdi32

oleaut32

Sections

.text Size: 716KB - Virtual size: 1.0MB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 8KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 716KB - Virtual size: 1.0MB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 8KB

.rsrc
Size: 18KB - Virtual size: 18KB