bfc5ca48afb07c5ee31a9792cfe06429548cfdc5b7784f37888dd1c9f6c78343

Sharing

Copy URL Twitter E-mail

General

Target

bfc5ca48afb07c5ee31a9792cfe06429548cfdc5b7784f37888dd1c9f6c78343
Size

1.2MB
MD5

23f37ae07fcc54e952d06e97ccf912dc
SHA1

ebb31076357d8cd20c9959871f3d488c0a5cacfe
SHA256

bfc5ca48afb07c5ee31a9792cfe06429548cfdc5b7784f37888dd1c9f6c78343
SHA512

e6c674ac08ccc8fb2ec38b7a35c809b5c3976435a2ca0f0f85c6fba400e871b44a4c3de35e34c40449c9d5ea6eb42f50bbec3109d603fbeea566165c1b7b609d
SSDEEP

12288:12tnh+0PVZVDQg2GogWKf+b7YjpzDo9QTcIa9g28XYUf:12tnhTVZGGvFf+b84CTcIa9g28XYU

Score

1^/10

Malware Config

Signatures

Files

bfc5ca48afb07c5ee31a9792cfe06429548cfdc5b7784f37888dd1c9f6c78343
.exe windows x86

9790ef66693ed0586eb36011502909ad

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
TerminateThread
DeleteFileA
GlobalAlloc
DeleteFileW
Process32FirstW
GlobalFree
CreateThread
HeapAlloc
GlobalLock
VerSetConditionMask
GetProcessHeap
CreateProcessW
GetModuleHandleW
VerifyVersionInfoW
CreateEventA
GetTickCount
GlobalUnlock
GetExitCodeProcess
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
SetConsoleScreenBufferSize
GetStdHandle
SetEndOfFile
WriteConsoleW
HeapReAlloc
HeapSize
GetStringTypeW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
GetTimeZoneInformation
ReadConsoleW
SetFilePointerEx
SetStdHandle
Process32NextW
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetFileType
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetModuleHandleExW
ExitProcess
EncodePointer
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
SetLastError
RtlUnwind
LoadLibraryExW
GetModuleFileNameW
GetProcAddress
FreeLibrary
VirtualQuery
WideCharToMultiByte
MultiByteToWideChar
RaiseException
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentDirectoryA
FindClose
Sleep
GetPrivateProfileStringW
OpenProcess
CreateToolhelp32Snapshot
TerminateProcess
GetPrivateProfileIntW
FindNextFileW
HeapFree
FindFirstFileW
SetCommState
SetCommTimeouts
CloseHandle
ReadFile
GetCommState
GetLastError
FormatMessageW
GetCommTimeouts
CreateFileW
PurgeComm
WriteFile
DecodePointer

user32

FillRect
GetMenuItemCount
SetWindowPos
GetDC
DestroyWindow
GetFocus
GetMenu
GetWindowRect
GetWindow
MonitorFromPoint
PostMessageW
LoadMenuW
GetKeyState
DefWindowProcW
GetWindowThreadProcessId
wsprintfW
MessageBoxW
GetWindowTextW
EnableWindow
SendInput
ToAscii
EndPaint
BeginPaint
SendMessageW
GetCursorPos
ReleaseDC
IsIconic
InvalidateRect
LoadImageW
UpdateWindow
PtInRect
DialogBoxParamW
SetDlgItemInt
GetMenuStringA
SetScrollPos
GetDesktopWindow
PostQuitMessage
CheckDlgButton
KillTimer
DrawTextW
AppendMenuW
GetDlgItem
GetClientRect
AppendMenuA
SetScrollRange
GetDlgItemInt
SetCursor
SetClipboardData
SetWindowsHookExW
LoadCursorW
DeleteMenu
GetGUIThreadInfo
CreateWindowExW
CallNextHookEx
EndDialog
GetSystemMetrics
SetWindowTextW
GetMessageW
SetScrollInfo
FindWindowW
CreatePopupMenu
GetScrollInfo
LoadIconW
TranslateMessage
TranslateAcceleratorW
SetFocus
SetLayeredWindowAttributes
EnumWindows
GetWindowTextLengthW
IsDlgButtonChecked
MoveWindow
GetForegroundWindow
GetTopWindow
RegisterClassExW
LoadAcceleratorsW
TrackPopupMenu
LoadStringW
GetKeyboardState
GetSubMenu
ShowWindow
IsWindow
OpenClipboard
DispatchMessageW
SetTimer
RedrawWindow
GetWindowInfo
GetMonitorInfoW
CloseClipboard
EmptyClipboard
SetDlgItemTextW
SetWindowTextA
SendDlgItemMessageW
MessageBoxA

gdi32

SetStretchBltMode
GetObjectW
SetBkMode
SetTextColor
GetPixel
DeleteObject
GetDIBits
GetStockObject
CreateFontW
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
BitBlt
GetDeviceCaps
GetTextExtentPoint32W
CreateSolidBrush

shell32

Shell_NotifyIconW

odbc32

ord31
ord20
ord24
ord13
ord141
ord9
ord16
ord111
ord4
ord18
ord127
ord75
ord136

ws2_32

getaddrinfo
ioctlsocket
recv
freeaddrinfo
WSAGetLastError
send
shutdown
accept
bind
WSAIoctl
ntohl
listen
getpeername
inet_addr
inet_ntoa
htonl
setsockopt
WSACleanup
closesocket
select
inet_pton
WSAStartup
socket
connect
recvfrom
getsockopt
htons
sendto
__WSAFDIsSet

uxtheme

EndBufferedPaint
BufferedPaintSetAlpha
BeginBufferedPaint

winmm

PlaySoundW

shlwapi

PathFileExistsW
PathFileExistsA

iphlpapi

IcmpCreateFile
IcmpSendEcho2
GetAdaptersInfo

rpcrt4

UuidCreate
UuidToStringW

winhttp

WinHttpSendRequest
WinHttpCloseHandle
WinHttpConnect
WinHttpQueryDataAvailable
WinHttpReadData
WinHttpOpen
WinHttpReceiveResponse
WinHttpSetTimeouts
WinHttpOpenRequest

Sections

.text
Size: 428KB - Virtual size: 428KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 516KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 528KB - Virtual size: 528KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9790ef66693ed0586eb36011502909ad

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

odbc32

ws2_32

uxtheme

winmm

shlwapi

iphlpapi

rpcrt4

winhttp

Sections

.text Size: 428KB - Virtual size: 428KB

.rdata Size: 204KB - Virtual size: 204KB

.data Size: 75KB - Virtual size: 516KB

.rsrc Size: 528KB - Virtual size: 528KB

.reloc Size: 16KB - Virtual size: 16KB

.text
Size: 428KB - Virtual size: 428KB

.rdata
Size: 204KB - Virtual size: 204KB

.data
Size: 75KB - Virtual size: 516KB

.rsrc
Size: 528KB - Virtual size: 528KB

.reloc
Size: 16KB - Virtual size: 16KB