bcd965003db908bdb6475440b2826dc06154c24585bc07e8267f0ccd2b9af445

Sharing

Copy URL

Twitter E-mail

General

Target

bcd965003db908bdb6475440b2826dc06154c24585bc07e8267f0ccd2b9af445
Size

546KB
MD5

5062fa1f1c75fcad1b96bc5d107b897c
SHA1

7f34c776bc5f9952eeb1746383d24e04a76a8939
SHA256

bcd965003db908bdb6475440b2826dc06154c24585bc07e8267f0ccd2b9af445
SHA512

0d3f31a5db7ed4dd7311a229061335642e9f30075bae4d61ae6d4b41f9da1d249f5c1985897bd6fea5e2eebf3c02f7a3324bba0b140aa726f45d9bb3c46bbf73
SSDEEP

12288:hnGbvFtX2FCife6O283bj2bKqTQUv3rZpm9n+JpeTuxwbm:hCFtliNO28Gecv3tplxcm

Score

N/A

Malware Config

Signatures

Files

bcd965003db908bdb6475440b2826dc06154c24585bc07e8267f0ccd2b9af445
.exe windows x86

d150f2287d912ec63026f7c3d55fe07d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

FixBrushOrgEx
CreateBitmapIndirect

kernel32

InitializeCriticalSection
GetTimeFormatA
FreeEnvironmentStringsW
CreateMutexA
LeaveCriticalSection
QueryPerformanceCounter
GetNumberFormatA
GetProcessHeap
GetCurrentThreadId
GetProcAddress
GetDateFormatW
GetTickCount
GetOEMCP
GetCurrentThread
WriteConsoleW
LoadLibraryA
DeleteCriticalSection
GetUserDefaultLCID
SetUnhandledExceptionFilter
CompareStringW
InterlockedIncrement
HeapAlloc
IsDebuggerPresent
OpenMutexA
GetLocaleInfoA
GetConsoleCP
SetEnvironmentVariableA
HeapSize
TlsSetValue
GetConsoleMode
TerminateProcess
IsValidLocale
TlsGetValue
MultiByteToWideChar
EnumSystemLocalesA
GetFileType
GetCPInfo
CompareStringA
ExitProcess
UnhandledExceptionFilter
GetCurrentProcessId
GetLastError
LCMapStringA
WaitForMultipleObjects
GetCurrentProcess
TlsAlloc
IsValidCodePage
EnumResourceTypesW
GetPrivateProfileStructA
CreateEventA
VirtualQuery
GetModuleFileNameA
SetLastError
GetStringTypeA
SetFilePointer
SetHandleCount
GetVersionExW
FindNextChangeNotification
RtlUnwind
ReadFile
EnumCalendarInfoExA
GetDateFormatA
GetVersionExA
GetLocaleInfoW
SetStdHandle
GetSystemTimeAsFileTime
DuplicateHandle
FreeEnvironmentStringsA
GetTimeZoneInformation
HeapReAlloc
VirtualFree
HeapFree
GetStartupInfoA
GetEnvironmentStringsW
SetConsoleMode
FlushFileBuffers
LCMapStringW
CreateFileA
GetACP
SetConsoleCtrlHandler
GetCommandLineA
VirtualAlloc
EnterCriticalSection
OpenFileMappingA
GetShortPathNameA
Sleep
CloseHandle
WriteConsoleA
WideCharToMultiByte
FreeLibrary
HeapDestroy
GetStdHandle
InterlockedExchange
GetEnvironmentStrings
GetStringTypeW
WriteFile
InterlockedDecrement
TlsFree
GetModuleHandleA
GetConsoleOutputCP
HeapCreate

user32

SendIMEMessageExW
RemovePropW
DlgDirListW
EditWndProc
CloseWindowStation
WINNLSGetEnableStatus
EndMenu
SetCapture
CharNextW
CreateDialogParamW
RegisterClassA
RegisterClassExA
RemoveMenu

advapi32

LookupAccountNameW
LookupPrivilegeNameW
LookupPrivilegeValueA
CryptVerifySignatureW
CryptSetHashParam
CryptDuplicateHash
LookupPrivilegeValueW
GetUserNameW
RegEnumValueA
RegDeleteKeyA
CryptEnumProvidersA
CryptSetProviderA
LogonUserA
RevertToSelf
RegConnectRegistryA
CreateServiceA
RegCreateKeyA

comctl32

InitCommonControlsEx

Sections

.text
Size: 170KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 358KB - Virtual size: 357KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d150f2287d912ec63026f7c3d55fe07d

Headers

File Characteristics

Imports

gdi32

kernel32

user32

advapi32

comctl32

Sections

.text Size: 170KB - Virtual size: 170KB

.rdata Size: 10KB - Virtual size: 26KB

.data Size: 358KB - Virtual size: 357KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 170KB - Virtual size: 170KB

.rdata
Size: 10KB - Virtual size: 26KB

.data
Size: 358KB - Virtual size: 357KB

.rsrc
Size: 7KB - Virtual size: 6KB