bdba60df46d37bb23258a814339087689b81d1a15db874c35c8f90c625ded7ee

Sharing

Copy URL

Twitter E-mail

General

Target

bdba60df46d37bb23258a814339087689b81d1a15db874c35c8f90c625ded7ee
Size

218KB
MD5

b2e518c8ef6066de962027d6eb520e17
SHA1

b221a9365caa5a8a49518eefdff928de61f68d52
SHA256

bdba60df46d37bb23258a814339087689b81d1a15db874c35c8f90c625ded7ee
SHA512

794dac75bacf951e7cd16bb9918bf0162b997df3c6a769ae95d1cb216a80a37360a246b32ba4b1ad3badeb9c3cd6cde6d91b4a1ddd24bdd7cc66ace0c3f7b915
SSDEEP

6144:UPJRDCrE6kdVzJqVM6vQOYNaNhqV6DA5h:UPHDokjkWRlNIq

Score

N/A

Malware Config

Signatures

Files

bdba60df46d37bb23258a814339087689b81d1a15db874c35c8f90c625ded7ee
.exe windows x86

bf7806ba4f419272448a9ab9369508f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePatternBrush
SetRectRgn
CreateBitmapIndirect
GetTextFaceW
PtInRegion
GetBkMode
GetTextAlign
OffsetViewportOrgEx
RestoreDC
GetClipBox
AbortDoc
SetDIBits
DPtoLP
RealizePalette
GetPixel

user32

LoadImageA
CharLowerW
CallWindowProcW
EqualRect
IsZoomed
ScreenToClient
SetClassLongW
IsWindowUnicode
IsWindowVisible
CharToOemA
KillTimer
OpenIcon
DestroyCaret
ShowCursor
GetKeyboardLayoutNameW
GetWindowPlacement
CreateCaret
GetClassInfoW
InvalidateRect
DestroyMenu
GetActiveWindow
GetMenuItemRect
LoadIconW
MoveWindow
GetMenuStringA
GetSysColorBrush
CharPrevW
FindWindowExW
AdjustWindowRectEx
IsDialogMessageW
AllowSetForegroundWindow
PostThreadMessageA
TrackPopupMenuEx
GetForegroundWindow
ClipCursor

msvcrt

wcsrchr
strcpy
sscanf
_controlfp
localtime
__set_app_type
mbstowcs
__p__fmode
iswspace
__p__commode
mktime
_amsg_exit
_initterm
strpbrk
_acmdln
exit
_ismbblead
_XcptFilter
wcscmp
_exit
_cexit
__setusermatherr
putc
__getmainargs

comdlg32

GetOpenFileNameW
ChooseFontW
GetSaveFileNameA

kernel32

FreeLibrary
WaitForMultipleObjectsEx
TryEnterCriticalSection
LCMapStringW
CreateFileMappingA
CancelWaitableTimer
lstrcmpA
GetTempFileNameW
lstrcatW
FindFirstFileA
EscapeCommFunction
GetFileType
lstrlenA
IsBadStringPtrA
DeleteFileW
WaitForSingleObjectEx
GetUserDefaultLangID
CreateNamedPipeW

Exports

Exports

?LeaveCriticalSectionGDhkyjkjhHFJlF@@YGKEPA_WG@Z

Sections

.text
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.div
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_x
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_y
Size: 512B - Virtual size: 75B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idat
Size: 512B - Virtual size: 400B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.imul
Size: 512B - Virtual size: 147B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.plus
Size: 1024B - Virtual size: 523B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.minus
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf7806ba4f419272448a9ab9369508f5

Headers

File Characteristics

Imports

gdi32

user32

msvcrt

comdlg32

kernel32

Exports

Exports

Sections

.text Size: 169KB - Virtual size: 168KB

.div Size: 2KB - Virtual size: 2KB

.diag_x Size: 512B - Virtual size: 28B

.diag_y Size: 512B - Virtual size: 75B

.data Size: 3KB - Virtual size: 2KB

.idat Size: 512B - Virtual size: 400B

.imul Size: 512B - Virtual size: 147B

.plus Size: 1024B - Virtual size: 523B

.minus Size: 512B - Virtual size: 140B

.rsrc Size: 36KB - Virtual size: 36KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 169KB - Virtual size: 168KB

.div
Size: 2KB - Virtual size: 2KB

.diag_x
Size: 512B - Virtual size: 28B

.diag_y
Size: 512B - Virtual size: 75B

.data
Size: 3KB - Virtual size: 2KB

.idat
Size: 512B - Virtual size: 400B

.imul
Size: 512B - Virtual size: 147B

.plus
Size: 1024B - Virtual size: 523B

.minus
Size: 512B - Virtual size: 140B

.rsrc
Size: 36KB - Virtual size: 36KB

.reloc
Size: 2KB - Virtual size: 2KB