bafccbbe59afe059c487d6ab945976b95a1c995b161f1c23296d10caaaff7566

Sharing

Copy URL Twitter E-mail

General

Target

bafccbbe59afe059c487d6ab945976b95a1c995b161f1c23296d10caaaff7566
Size

252KB
MD5

35e45598506a373e37a8cdc0f174a343
SHA1

9348b8176e599cd19e58fa36236f26f7133bf52c
SHA256

bafccbbe59afe059c487d6ab945976b95a1c995b161f1c23296d10caaaff7566
SHA512

4f3b79919d867d256a9bbda1e8321585e2e4b8941d9dbbd0331d58d6af1870a71d42b1f21f8c26957ca47960c7bd0746e296dfe71d7b39a5525c7288a34b8566
SSDEEP

6144:G7qIydQiM8YAU5NG1X4Ddq4uYTj86QDub4k976jJjpkWAkN5o:QqIy4eUqX4pv86Q04kGlyk

Score

N/A

Malware Config

Signatures

Files

bafccbbe59afe059c487d6ab945976b95a1c995b161f1c23296d10caaaff7566
.exe windows x86

66f17ff7fa7dc5f9857ea6f94733c084

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

gdi32

SetBkColor
CreateCompatibleDC
CreateFontIndirectA
DeleteDC
GetDeviceCaps
SelectObject
DeleteObject

kernel32

CreateProcessA
SizeofResource
SetStdHandle
GetModuleHandleW
GetACP
CloseHandle
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
HeapSize
GetCPInfo
GetCurrentProcessId
GetEnvironmentStrings
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
FindResourceW
GetConsoleCP
lstrlenA
HeapCreate
LCMapStringW
GetLastError
LeaveCriticalSection
ExitProcess
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
WaitForMultipleObjects
FindFirstFileW
ResetEvent
CompareStringA
FindNextFileW
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
SetErrorMode
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
FlushFileBuffers
TlsAlloc
GetTickCount
QueryPerformanceCounter
UnmapViewOfFile
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
VirtualFree
InterlockedIncrement
GetCurrentThreadId
GetLocaleInfoA
SetEndOfFile
GetConsoleMode
VirtualQuery
GetVersion
WriteConsoleA
TerminateProcess
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
CreateMutexA
MultiByteToWideChar
LoadLibraryExW
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
GetVersionExA
HeapAlloc
VirtualProtect
GetModuleFileNameW
InterlockedDecrement
SetLastError
FormatMessageA
TlsGetValue
FindClose
GlobalLock
LoadResource
InitializeCriticalSection
LockResource
GetExitCodeProcess
Sleep
FreeLibrary
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WaitForSingleObject
WriteFile
InterlockedExchange
GetStringTypeA
lstrcmpiA
WideCharToMultiByte
FreeEnvironmentStringsW
CreateFileA
LocalAlloc
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
GetDriveTypeA
SetEvent
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
FindResourceA
GetCommandLineA
VirtualAlloc
WriteConsoleW
GetOEMCP
LocalFree

user32

EnableMenuItem
LoadStringA
GetWindow
IsWindowEnabled
TranslateMessage
EnableWindow
ShowWindow
UpdateWindow
GetParent
GetMessageA
DestroyWindow
GetActiveWindow
ReleaseDC
RegisterClassA
PeekMessageA
EndPaint
DispatchMessageA
IsWindow
SetWindowPos
PostQuitMessage
DestroyMenu
SetCursor
CallWindowProcA
GetClientRect
SendMessageA
DefWindowProcA
GetSubMenu
CreateWindowExA
SetFocus
GetDC
GetSystemMetrics
GetWindowRect
ReleaseCapture
CheckMenuItem
GetWindowLongA
SetTimer
GetDlgItem
LoadCursorA
LoadIconA
GetDesktopWindow
SetForegroundWindow
EndDialog
MoveWindow
MessageBoxA
GetSysColor
IsWindowVisible
wsprintfA
InvalidateRect

ole32

CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance

oleaut32

SysStringLen
SysAllocString
SysFreeString
SysAllocStringLen

advapi32

RegSetValueExA
RegDeleteKeyA
RegDeleteValueA
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegQueryValueExA
RegCreateKeyExA

msvcrt

_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__dllonexit
_onexit
__setusermatherr

Sections

.text
Size: 200KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66f17ff7fa7dc5f9857ea6f94733c084

Headers

File Characteristics

Imports

version

gdi32

kernel32

user32

ole32

oleaut32

advapi32

msvcrt

Sections

.text Size: 200KB - Virtual size: 196KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 4KB - Virtual size: 680B

.text
Size: 200KB - Virtual size: 196KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 4KB - Virtual size: 680B