bdc9e3475cadddc3aeb6a7718db5863eb762d2ad11c9de1c93d9d07f8aa60d5f

Sharing

Copy URL Twitter E-mail

General

Target

bdc9e3475cadddc3aeb6a7718db5863eb762d2ad11c9de1c93d9d07f8aa60d5f
Size

724KB
MD5

981e1f993965c64d17251d6462c8edd0
SHA1

e933482cb0d0001e65a01eae8a927f60d909466c
SHA256

bdc9e3475cadddc3aeb6a7718db5863eb762d2ad11c9de1c93d9d07f8aa60d5f
SHA512

7b89449211be48b1a6eb06bb87f054a61c1ce2856fdb2987868cff378d168fbe119dd1c8bcd3a55d7f664810c1d67a2583185500e5ddb888a3b9198266e8f964
SSDEEP

12288:lG+moZ8iGm6kBG85enO5nbW+I26mH35aeBf6c96LD3O:lG+Tb/cnONbW9mX5aA9oy

Score

N/A

Malware Config

Signatures

Files

bdc9e3475cadddc3aeb6a7718db5863eb762d2ad11c9de1c93d9d07f8aa60d5f
.exe windows x86

b9811b4e07009955fc642995a043a795

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA
sndPlaySoundA

kernel32

ExitProcess
EndUpdateResourceA
Sleep
WaitForSingleObject
CreateThread
CloseHandle
LoadLibraryA
GetProcAddress
RtlUnwind
RaiseException
GetStartupInfoA
GetCommandLineA
HeapAlloc
HeapFree
GetTimeZoneInformation
GetSystemTime
GetACP
TerminateProcess
ExitThread
HeapReAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
lstrcpyA
BeginUpdateResourceA
ReadFile
GetFileSize
WriteFile
CreateFileA
DeleteFileA
GetLocalTime
lstrlenA
CopyFileA
GetFileAttributesA
GetModuleFileNameA
MoveFileA
lstrcatA
GetTempPathA
VirtualFree
VirtualAlloc
GetTickCount
GetDiskFreeSpaceExA
GetVolumeInformationA
GetLogicalDriveStringsA
LocalFree
LocalAlloc
lstrcpynA
FindClose
FindNextFileA
FindFirstFileA
SetFilePointer
RemoveDirectoryA
GetLastError
CreateDirectoryA
GetCurrentProcess
SetUnhandledExceptionFilter
GetProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
CreateEventA
InitializeCriticalSection
LeaveCriticalSection
PostQueuedCompletionStatus
EnterCriticalSection
GetSystemInfo
CreateIoCompletionPort
GetQueuedCompletionStatus
InterlockedDecrement
InterlockedIncrement
SetEvent
InterlockedExchange
CancelIo
DeleteCriticalSection
GetSystemDirectoryA
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
LocalSize
FreeLibrary
GetVersionExA
GetVersion
LoadResource
FindResourceA
LockResource
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
WideCharToMultiByte
MultiByteToWideChar
FormatMessageA
DuplicateHandle
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFullPathNameA
GetStringTypeExA
GetThreadLocale
GetShortPathNameA
SetLastError
MulDiv
lstrcmpA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCurrentThread
GetTempFileNameA
SetFileTime
GetFileTime
GetDiskFreeSpaceA
GlobalFlags
SizeofResource
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GetOEMCP
LocalFileTimeToFileTime
SystemTimeToFileTime
SetErrorMode
GetCurrentDirectoryA
UpdateResourceA

user32

SetDlgItemTextA
GetDlgItemTextA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
GetScrollInfo
SetScrollRange
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
RegisterClassA
GetParent
GetMenu
GetWindowTextLengthA
GetWindowTextA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
SetWindowLongA
RegisterWindowMessageA
IsIconic
GetWindowPlacement
EndDialog
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
MoveWindow
SetMenuDefaultItem
TrackPopupMenu
IsWindow
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
DrawTextA
CheckMenuItem
GetMenuState
ShowScrollBar
ShowWindow
SetMenuItemBitmaps
ModifyMenuA
GetMenuCheckMarkDimensions
wvsprintfA
CharUpperA
GetWindowDC
BeginPaint
IsDialogMessageA
IntersectRect
CheckMenuRadioItem
SetClassLongA
SetForegroundWindow
LoadBitmapA
GetSystemMenu
AppendMenuA
MessageBeep
GetSystemMetrics
DrawEdge
GetDesktopWindow
SystemParametersInfoA
CharNextA
DeleteMenu
GetMenuItemCount
EnableMenuItem
GetCursorPos
GetFocus
GetDlgCtrlID
SetWindowPos
IsWindowVisible
UpdateWindow
ScreenToClient
GetWindow
CopyIcon
PtInRect
KillTimer
GetKeyState
ReleaseCapture
SetCapture
SetTimer
SetRectEmpty
DrawFrameControl
GetCursor
GetClassInfoA
DefWindowProcA
LoadCursorA
LoadMenuA
LoadImageA
GetIconInfo
GetDC
ReleaseDC
GetSysColor
FillRect
EndPaint
TabbedTextOutA
GrayStringA
LoadStringA
IsZoomed
PostQuitMessage
ShowOwnedPopups
ValidateRect
SetWindowContextHelpId
MapDialogRect
LoadAcceleratorsA
TranslateAcceleratorA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
SetParent
IsRectEmpty
GetClassNameA
GetSysColorBrush
DispatchMessageA
TranslateMessage
GetMessageA
LoadIconA
SendMessageA
EnableWindow
SetRect
MessageBoxA
wsprintfA
PostMessageA
FindWindowA
DestroyMenu
DestroyCursor
DestroyIcon
GetWindowLongA
GetNextDlgTabItem
DrawIconEx
SetWindowTextA
IsWindowEnabled
PostThreadMessageA
OffsetRect
GetClientRect
CopyRect
InflateRect
DrawFocusRect
GetWindowRect
RegisterClipboardFormatA
LockWindowUpdate
GetDCEx
InvertRect
GetNextDlgGroupItem
CopyAcceleratorTableA
GetMenuItemID
GetSubMenu
TrackPopupMenuEx
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor

gdi32

CreateBitmap
GetTextExtentPointA
LPtoDP
GetBkColor
GetTextColor
CreateFontA
GetCharWidthA
GetTextMetricsA
DPtoLP
CreateRectRgnIndirect
CombineRgn
SetRectRgn
PatBlt
GetMapMode
Escape
RectVisible
PtVisible
CreatePatternBrush
GetWindowExtEx
GetViewportExtEx
GetDeviceCaps
CreateRectRgn
SetTextAlign
LineTo
MoveToEx
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
RestoreDC
SaveDC
GetClipBox
CreatePen
SetBkMode
TextOutA
CreateSolidBrush
ExtTextOutA
StretchDIBits
CreateDIBSection
GetTextExtentPoint32A
SetPixelV
StretchBlt
PtInRegion
CreateFontIndirectA
Rectangle
PlgBlt
FillRgn
CreatePolygonRgn
GetObjectA
GetPixel
CreateDIBitmap
SelectObject
SetBkColor
SetTextColor
DeleteDC
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
DeleteObject

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
SetFileSecurityA
GetFileSecurityA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegCreateKeyA
RegSetValueA

shell32

SHGetFileInfoA
ShellExecuteExA
DragQueryFileA
DragFinish
Shell_NotifyIconA
ExtractIconA
ShellExecuteA
ord71

comctl32

ImageList_Create
ImageList_Destroy
_TrackMouseEvent
ord17
ImageList_AddMasked

oledlg

ord8

ole32

CoRevokeClassObject
CoRegisterMessageFilter
OleIsCurrentClipboard
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoUninitialize
CoInitialize
OleFlushClipboard

olepro32

ord253

oleaut32

SysFreeString
SysStringLen
SysAllocStringByteLen
SysAllocStringLen
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear

skinh

SkinH_Attach

shlwapi

PathRemoveFileSpecA
SHAutoComplete

ws2_32

WSARecv
WSACloseEvent
WSASend
WSAIoctl
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
WSASocketA
accept
WSAEventSelect
bind
listen
inet_addr
send
recv
WSAStartup
socket
ioctlsocket
gethostbyname
WSAGetLastError
htons
inet_ntoa
getpeername
setsockopt
WSACreateEvent
connect
select
WSACleanup
closesocket

pdh

PdhAddCounterA
PdhOpenQueryA
PdhCloseQuery
PdhGetFormattedCounterValue
PdhCollectQueryData

avifil32

AVIFileRelease
AVIStreamWrite
AVIFileOpenA
AVIFileCreateStreamA
AVIStreamSetFormat
AVIFileExit
AVIFileInit
AVIStreamRelease

msvfw32

DrawDibOpen
ICDecompress
ICSendMessage
ICSeqCompressFrameEnd
DrawDibDraw
DrawDibClose

Sections

.text
Size: 384KB - Virtual size: 381KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 224KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b9811b4e07009955fc642995a043a795

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

skinh

shlwapi

ws2_32

pdh

avifil32

msvfw32

Sections

.text Size: 384KB - Virtual size: 381KB

.rdata Size: 84KB - Virtual size: 83KB

.data Size: 28KB - Virtual size: 45KB

.rsrc Size: 224KB - Virtual size: 224KB

.text
Size: 384KB - Virtual size: 381KB

.rdata
Size: 84KB - Virtual size: 83KB

.data
Size: 28KB - Virtual size: 45KB

.rsrc
Size: 224KB - Virtual size: 224KB