bf08103b91088f37ef34c382b2f2446f4dcf85c3bef073bbe8f9cb2587d53310

Sharing

Copy URL Twitter E-mail

General

Target

bf08103b91088f37ef34c382b2f2446f4dcf85c3bef073bbe8f9cb2587d53310
Size

82KB
MD5

8275c47e30e9537426a1ea5223415642
SHA1

a94d33c58b90d9c4925608e46f1d2d2a85c5ed0b
SHA256

bf08103b91088f37ef34c382b2f2446f4dcf85c3bef073bbe8f9cb2587d53310
SHA512

f373749cb1eefdf91de44ece7177b903d330e33bf71a07f14075d73968c502cbfa5a3d97e5db63d80cdb336aae33e265f6eb3850e3cdc55900a6e7c39b1ebdb4
SSDEEP

1536:uL3GZZdJ7TAt6MlzpHN2VLco2yM5ohCBwLqmbiQGrDthd5hovTuFc:83EZdNAXtALOwDiTDthdov

Score

N/A

Malware Config

Signatures

Files

bf08103b91088f37ef34c382b2f2446f4dcf85c3bef073bbe8f9cb2587d53310
.exe windows x86

65b657153ed0e68706d3a0ff13960303

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetSysColor
UnhookWindowsHookEx
SetWindowPos
GetSubMenu
PostQuitMessage
EqualRect
EnableMenuItem
EnumWindows
GetSysColorBrush
GetMessageA
GetScrollPos
SetWindowTextA
FrameRect

kernel32

InterlockedExchange
GetStartupInfoA
FileTimeToSystemTime
QueryPerformanceCounter
GetThreadLocale
RtlUnwind
GetTempPathA
ExitProcess
GetTickCount
GetCurrentProcessId
GetTimeZoneInformation
VirtualAllocEx
SetUnhandledExceptionFilter
GetFileAttributesA

gdi32

CopyEnhMetaFileA
CreateICW
CreateCompatibleBitmap
SetViewportExtEx
GetMapMode
SelectClipPath
FillRgn
ExcludeClipRect
DPtoLP

ole32

CoRevokeClassObject
CoInitialize
CoTaskMemRealloc
CoInitializeSecurity
CoCreateInstance
StringFromGUID2
StgOpenStorage
OleRun
DoDragDrop

advapi32

RegCreateKeyA
CryptHashData
CheckTokenMembership
GetSecurityDescriptorDacl
FreeSid
RegCreateKeyExW
GetUserNameA
QueryServiceStatus
AdjustTokenPrivileges
RegQueryValueExW

msvcrt

_mbscmp
strlen
_CIpow
__setusermatherr
_lock
__getmainargs
iswspace
strncpy
_strdup
_flsbuf
__initenv
fflush
_fdopen
raise
strcspn
puts
signal
fprintf

comctl32

ImageList_LoadImageW
ImageList_LoadImageA
InitCommonControls
ImageList_GetIconSize
ImageList_Destroy
ImageList_DragEnter
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_SetIconSize
CreatePropertySheetPageA
ImageList_Write
ImageList_GetBkColor
ImageList_GetIcon

shell32

DoEnvironmentSubstW
ShellExecuteEx
SHBrowseForFolderA
CommandLineToArgvW
DragAcceptFiles
ExtractIconExW
DragQueryFileA
DragQueryFileW
ShellExecuteW
SHGetPathFromIDList
ExtractIconW

oleaut32

SafeArrayGetUBound
SafeArrayRedim
SafeArrayPtrOfIndex
SafeArrayUnaccessData
SysReAllocStringLen
VariantCopy
SafeArrayCreate
SafeArrayPutElement

Sections

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

65b657153ed0e68706d3a0ff13960303

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 34KB - Virtual size: 34KB

.data Size: 41KB - Virtual size: 40KB

.rsrc Size: 6KB - Virtual size: 5KB

.text Size: - Virtual size: 92KB

.text
Size: 34KB - Virtual size: 34KB

.data
Size: 41KB - Virtual size: 40KB

.rsrc
Size: 6KB - Virtual size: 5KB

.text
Size: - Virtual size: 92KB