bfda5626d04374bc94571fc44acd1ed8e7e9babf7f290f5c4f983cf09b5b5c9b

Sharing

Copy URL Twitter E-mail

General

Target

bfda5626d04374bc94571fc44acd1ed8e7e9babf7f290f5c4f983cf09b5b5c9b
Size

41KB
MD5

5b35b63961ccc99718ead686a63dd4d1
SHA1

ebbc5165cc0fe120c3d9c68eaa1897e62829c56d
SHA256

bfda5626d04374bc94571fc44acd1ed8e7e9babf7f290f5c4f983cf09b5b5c9b
SHA512

28b4ba6dec4653989a17ddcb8e3750ea1a44904c7741877dd5aacaf9af6a53d25c13069ebba606e5156b2035e1d938127f336a9549a22995c4defe943aa4c3da
SSDEEP

768:sXkq96jciSKZd5mL18jBIykRqkkbP+d/ml+3h0t:ykMKcinKg+m+3h

Score

N/A

Malware Config

Signatures

Files

bfda5626d04374bc94571fc44acd1ed8e7e9babf7f290f5c4f983cf09b5b5c9b
.exe windows x86

ff1443cdd56386034e691106abd14f18

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

duser

GetGadgetRootInfo
SetGadgetProperty
GetGadgetProperty
GetStdColorI
GetDebug
SetGadgetFocus
FindStdColor
UtilDrawBlendRect
SetGadgetFillF
DUserPostMethod
GetGadgetFocus
IsStartDelete
RegisterGadgetProperty
SetGadgetRootInfo

crtdll

iswlower
strcat
_spawnv
localtime
_open
strpbrk
_pipe
_winmajor_dll
scanf
_msize
_access
_mbsupr
log10
memmove
_strdup
_ismbcsymbol
_fullpath
vsprintf
_ismbchira
_CItanh
strchr
_chdrive
_heapwalk
_execle
wcsftime
_ismbbgraph
_y0
_itow
_searchenv
_c_exit
_spawnlpe
_fputchar
_write
fprintf
_aexit_rtn_dll
_CIlog

cmutil

?LoadEntry@CIniW@@IBEPAGPBG@Z
CmBuildFullPathFromRelativeW
?SetSection@CIniW@@QAEXPBG@Z
?CIni_SetFile@CIniA@@KGXPAPADPBD@Z
?LoadSection@CIniA@@QBEPADPBD@Z
CmAtolA
?GetPrimaryFile@CIniA@@QBEPBDXZ
CmEndOfStrW
?Clear@CIniW@@QAEXXZ
?GetPrimaryRegPath@CIniW@@QBEPBGXZ
??_FCIniW@@QAEXXZ
GetOSMajorVersion
?GetLogFilePath@CmLogFile@@QAEPBGXZ
?SetParams@CmLogFile@@QAEJHKPBD@Z
GetOSVersion
CmStrchrW

kernel32

GetModuleHandleW
SetStdHandle
QueryMemoryResourceNotification
ConvertDefaultLocale
GetCurrentThread
LoadLibraryW
FindNextVolumeMountPointA
SetClientTimeZoneInformation
PeekConsoleInputA
GlobalReAlloc
AllocConsole
GetCPInfoExW
QueryPerformanceCounter
FindFirstChangeNotificationW
GetLocaleInfoW
SetNamedPipeHandleState
IsBadReadPtr
OpenSemaphoreA
GetUserDefaultLangID
GetLocalTime
DnsHostnameToComputerNameA

olecli32

MfClone
OleRegisterClientDoc
OleQueryOpen
LeQueryProtocol
BmCopy
DibRelease
OleCreate
OleDelete
PbCreateLinkFromClip
DefCreateLinkFromClip
BmEnumFormat
PbCopyToClipboard
PbCreateFromTemplate
OleCreateLinkFromClip
LeReconnect
ErrCopyFromLink
GenClone
OleClose
OleGetLinkUpdateOptions
LeEnumFormat
SetNextNetDrive
BmRelease
MfDraw
MfEnumFormat
OleIsDcMeta

vssapi

?OnPostSnapshot@CVssJetWriter@@UAG_NPAVIVssWriterComponents@@@Z
?Uninitialize@CVssJetWriter@@QAGXXZ
?AreComponentsSelected@CVssWriter@@IBG_NXZ
?CreateVssBackupComponents@@YGJPAPAVIVssBackupComponents@@@Z
?OnThawEnd@CVssJetWriter@@UAG_N_N@Z
?Subscribe@CVssWriter@@QAGJK@Z
?OnPostRestore@CVssWriter@@UAG_NPAVIVssWriterComponents@@@Z
?OnThawBegin@CVssJetWriter@@UAG_NXZ
?OnContinueIOOnVolume@CVssWriter@@UAG_NPAGU_GUID@@1@Z
?Unsubscribe@CVssWriter@@QAGJXZ
?GetBackupType@CVssWriter@@IBG?AW4_VSS_BACKUP_TYPE@@XZ
?OnFreezeBegin@CVssJetWriter@@UAG_NXZ
IsVolumeSnapshotted

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff1443cdd56386034e691106abd14f18

Headers

DLL Characteristics

File Characteristics

Imports

duser

crtdll

cmutil

kernel32

olecli32

vssapi

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 4KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 5KB - Virtual size: 5KB