b0bcf8ff1c1f156f099cf1aea18e24f808c27a9a80064c74e91f3fb2bc3c935e

Sharing

Copy URL Twitter E-mail

General

Target

b0bcf8ff1c1f156f099cf1aea18e24f808c27a9a80064c74e91f3fb2bc3c935e
Size

279KB
MD5

86f895d5b82e46b5f2013ba8549f8bd3
SHA1

9af5a9d3aeece0828a88efb136a6ec3af827570f
SHA256

b0bcf8ff1c1f156f099cf1aea18e24f808c27a9a80064c74e91f3fb2bc3c935e
SHA512

a440cb341a9214ea53c65be64270a823939ad2a1fa17650f94f8ed322a4b2dbda1e491e48191381928a91e8fcf05840681d13e73ea6932ff3eccf8d6d7d69191
SSDEEP

6144:dPQOOO3DZLv81Aa+WnW2nln+hIRquyVwgWLCwNBbksUZf85B:bOCBvfaznlBRByygkCgap85

Score

N/A

Malware Config

Signatures

Files

b0bcf8ff1c1f156f099cf1aea18e24f808c27a9a80064c74e91f3fb2bc3c935e
.exe windows x86

0cc60029e72c9ba848f21046655e0d6b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

RealizePalette
GetCharacterPlacementA
DeleteMetaFile
ExtTextOutW
SetGraphicsMode
SetViewportOrgEx
Rectangle
GetICMProfileW
GetPaletteEntries
Arc
GetGlyphOutline

comctl32

InitCommonControlsEx

kernel32

HeapAlloc
GetCurrentThreadId
ReadFile
VirtualQuery
LeaveCriticalSection
FreeEnvironmentStringsA
FlushInstructionCache
GetEnvironmentStringsW
WritePrivateProfileStringW
GetLocaleInfoW
FlushFileBuffers
VirtualAlloc
GetStartupInfoA
GetCurrentProcessId
CompareStringW
QueryPerformanceCounter
IsValidLocale
GetModuleHandleA
CreateProcessA
TlsAlloc
TlsSetValue
DeleteCriticalSection
GetPrivateProfileStringW
SetEnvironmentVariableA
HeapCreate
CreateMutexA
TlsFree
SetCurrentDirectoryA
InterlockedExchange
HeapDestroy
SetHandleCount
SetFilePointer
GetTimeFormatA
GetCPInfo
GetLastError
GetVersionExA
OpenMutexA
GetCurrentProcess
GetModuleFileNameA
GetSystemTimeAsFileTime
VirtualProtect
GetCommandLineA
SetLastError
LCMapStringW
IsBadWritePtr
GetProcAddress
UnhandledExceptionFilter
AddAtomA
GetTickCount
GetUserDefaultLCID
WriteFile
GetTimeZoneInformation
DeleteFileA
GetOEMCP
HeapFree
EnumSystemLocalesA
GetSystemDefaultLCID
CompareStringA
GetDateFormatA
GetStringTypeA
FreeEnvironmentStringsW
FormatMessageA
GetPrivateProfileSectionNamesW
GetFileType
TlsGetValue
InitializeCriticalSection
WriteConsoleOutputA
GetLocaleInfoA
WideCharToMultiByte
GetStringTypeW
EnterCriticalSection
CloseHandle
TerminateProcess
GetCurrentThread
RtlUnwind
GetEnvironmentStrings
GetSystemInfo
VirtualFree
ExitProcess
GetACP
HeapReAlloc
LoadLibraryA
GetStdHandle
IsValidCodePage
LCMapStringA
OpenEventW
HeapSize
MultiByteToWideChar
SetStdHandle

user32

wsprintfA
RegisterClassExA
IsWindowUnicode
DefMDIChildProcW
MessageBoxA
EqualRect
ChangeDisplaySettingsW
EditWndProc
ChildWindowFromPointEx
SetWinEventHook
RegisterClassA
CharUpperBuffW
RegisterWindowMessageA
RemovePropA
ArrangeIconicWindows
SetUserObjectInformationW

Sections

.text
Size: 165KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0cc60029e72c9ba848f21046655e0d6b

Headers

File Characteristics

Imports

gdi32

comctl32

kernel32

user32

Sections

.text Size: 165KB - Virtual size: 165KB

.rdata Size: 18KB - Virtual size: 27KB

.data Size: 85KB - Virtual size: 85KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 165KB - Virtual size: 165KB

.rdata
Size: 18KB - Virtual size: 27KB

.data
Size: 85KB - Virtual size: 85KB

.rsrc
Size: 8KB - Virtual size: 8KB