radbxnzdxbd[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

radbxnzdxbd.exe
Size

3.4MB
MD5

4c3567554928099e25e350e05d42fd77
SHA1

cf62e7568ae54ab3333aa46ae6ce270db674d7c8
SHA256

c880c82646266710ec7e0882c16b4f281219889646968aafbb754fd95bb9902b
SHA512

03b46bc460ce740c1ab62ba79a36370a6006cad527f89c28584d0828259c1d156f1f337b4e3453eb552ed60fd0fabaff911522773ff5ee6428554cab7d57b18d
SSDEEP

49152:c6tokbhvGb4DOkGU5Qu0OQbqRBhfWnTTqeQPlVBFWBQXM:c6dOkDQJmBhfWnpQPLB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
radbxnzdxbd.exe

Files

radbxnzdxbd.exe
.exe windows x86

dab94835d1a5773d2901aee196a73559

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

psapi

GetModuleFileNameExA
EnumProcessModules
GetModuleBaseNameA

shlwapi

PathFileExistsA

kernel32

GetLocaleInfoW
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
GetStringTypeA
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapSize
HeapReAlloc
GetFileType
SetStdHandle
TerminateProcess
ExitThread
CreateThread
GetACP
RaiseException
GetSystemTimeAsFileTime
FindResourceExA
VirtualProtect
GetProfileIntA
GetProfileStringA
VirtualProtectEx
GetTimeFormatA
GetDateFormatA
SearchPathA
GlobalUnlock
GlobalLock
GlobalAlloc
CloseHandle
OpenProcess
Process32Next
Process32First
CreateToolhelp32Snapshot
Sleep
GetModuleFileNameA
WaitForSingleObject
CreateRemoteThread
GetProcAddress
GetModuleHandleA
WriteProcessMemory
VirtualAllocEx
LoadLibraryA
MapViewOfFile
OpenFileMappingA
OpenMutexA
OutputDebugStringA
GetTempPathA
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
WriteFile
SizeofResource
CreateFileA
LoadResource
FindResourceA
lstrlenA
lstrcpyA
GetVersion
GlobalAddAtomA
GlobalGetAtomNameA
HeapFree
HeapAlloc
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
CopyFileA
GlobalSize
GetTickCount
lstrlenW
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
GetCurrentDirectoryA
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
GlobalFlags
GetProcessVersion
GetFileSize
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentProcess
DuplicateHandle
GetCurrentThread
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetLastError
GetDiskFreeSpaceA
GetFileTime
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
GlobalFree
SetThreadPriority
ResumeThread
SetLastError
lstrcmpA
MulDiv
LocalAlloc
LocalLock
LocalUnlock
FormatMessageA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
FreeLibrary
LockResource
GetCurrentThreadId
lstrcmpiA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcpynA

user32

LoadStringA
GetSysColorBrush
FillRect
CharUpperA
WaitMessage
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
wvsprintfA
EndDialog
CreateDialogIndirectParamA
GetMessageA
FindWindowA
ValidateRect
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
MessageBeep
IsClipboardFormatAvailable
SetRect
GetTabbedTextExtentA
GetDCEx
LockWindowUpdate
SetParent
TranslateMessage
IsRectEmpty
SendMessageA
GetSubMenu
LoadMenuA
CloseClipboard
EmptyClipboard
OpenClipboard
EnableWindow
GetCursorPos
LoadCursorA
DestroyCursor
SetCursorPos
GetSystemMenu
ReleaseDC
PtInRect
ClientToScreen
SetCapture
InflateRect
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
InsertMenuA
DeleteMenu
GetMenuStringA
DestroyIcon
CharNextA
CopyAcceleratorTableA
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
GetSystemMetrics
GetWindowLongA
GetClassNameA
GetClientRect
GetParent
GetNextDlgGroupItem
RegisterClipboardFormatA
WindowFromPoint
AppendMenuA
RemoveMenu
SetClipboardData
PostThreadMessageA
InvalidateRect
EqualRect
SetRectEmpty
UpdateWindow
KillTimer
SetTimer
GetMenuItemCount
GetMenu
BringWindowToTop
CreateWindowExA
DefFrameProcA
TranslateMDISysAccel
TranslateAcceleratorA
DrawMenuBar
DefMDIChildProcA
IsWindow
SetWindowLongA
SetWindowPos
RedrawWindow
AdjustWindowRectEx
GetMenuItemID
wsprintfA
GetActiveWindow
InvertRect
GetDC
CheckDlgButton
SendDlgItemMessageA
MapWindowPoints
GetSysColor
DispatchMessageA
ScreenToClient
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
RegisterClassA
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
DestroyWindow
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
RegisterWindowMessageA
LoadAcceleratorsA
ReleaseCapture
GetCapture
PostMessageA
PeekMessageA
SetCursor
IsWindowEnabled
GetWindow
GetDesktopWindow
ShowWindow
SetFocus
DestroyMenu
GetClassInfoA
LoadIconA
SetMenu
WinHelpA
SetActiveWindow
ReuseDDElParam
UnpackDDElParam
UnregisterClassA
CreateMenu
GetWindowThreadProcessId
ShowCaret
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetLastActivePopup
IsWindowVisible
IsIconic
GetFocus
CopyRect
GetDlgItem
GetKeyState
GetDlgCtrlID
SetWindowRgn
IsZoomed
GetAsyncKeyState
UnionRect
EnableScrollBar
DrawStateA
DestroyAcceleratorTable
SetClassLongA
CreatePopupMenu
GetIconInfo
CopyImage
GetMenuItemInfoA
IsMenu
DrawFrameControl
DrawEdge
DrawIconEx
DrawFocusRect
GetUpdateRect
GetMenuDefaultItem
SetMenuDefaultItem
LoadImageA
GetCaretPos
FrameRect
CreateAcceleratorTableA
ToAsciiEx
MapVirtualKeyA
GetKeyboardLayout
GetKeyboardState
CopyIcon
CharUpperBuffA
GetDoubleClickTime
SubtractRect
EnumChildWindows
IsCharLowerA
GetKeyNameTextA
MapVirtualKeyExA
GetWindowRgn
GetClipboardData
SendNotifyMessageA
HideCaret
IsWindowUnicode
DefDlgProcA
ExcludeUpdateRgn

gdi32

CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
GetStockObject
CreateSolidBrush
CreateFontA
SelectClipPath
ExtSelectClipRgn
GetObjectType
GetViewportExtEx
GetWindowExtEx
CreatePen
CreateHatchBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreateRectRgnIndirect
GetMapMode
SetRectRgn
CombineRgn
Rectangle
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
CreateDCA
LPtoDP
GetTextExtentPoint32A
GetTextColor
GetBkColor
GetNearestColor
GetStretchBltMode
GetPolyFillMode
PatBlt
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
CopyMetaFileA
BitBlt
CreateCompatibleDC
SelectObject
GetTextMetricsA
CreateFontIndirectA
GetDeviceCaps
DPtoLP
GetCharWidthA
DeleteDC
StartDocA
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
CreateDIBSection
CreateCompatibleBitmap
CreateRoundRectRgn
SetPixel
Polyline
CreatePolygonRgn
Polygon
Ellipse
CreateEllipticRgn
EnumFontFamiliesA
GetTextCharsetInfo
CreateDIBitmap
StretchBlt
GetPixel
OffsetRgn
GetRgnBox
GetDIBits
RealizePalette
FrameRgn
FillRgn
RoundRect
PtInRegion
GetBoundsRect
ExtFloodFill
GetPaletteEntries
CreatePalette
SetPaletteEntries
FillPath
EndPath
CloseFigure
BeginPath
GetNearestPaletteIndex
GetSystemPaletteEntries
SetPixelV
GetTextExtentPointA
EnumFontFamiliesExA
LineTo
SetTextAlign
GetCurrentPositionEx
DeleteObject
GetClipRgn
GetTextAlign
ScaleWindowExtEx
CreateRectRgn

comdlg32

CommDlgExtendedError
GetFileTitleA
ReplaceTextA
FindTextA
PrintDlgA
GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

SetFileSecurityA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegCreateKeyA
RegSetValueA
RegEnumValueA
RegEnumKeyExA
RegQueryInfoKeyA
GetFileSecurityA

shell32

SHAppBarMessage
SHGetPathFromIDListA
SHBrowseForFolderA
ExtractIconA
DragQueryFileA
DragFinish
SHGetFileInfoA
ShellExecuteA

comctl32

ImageList_LoadImageA
ImageList_Destroy
ord17
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_SetImageCount
ImageList_AddMasked
ImageList_Add
ImageList_DrawIndirect
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA
ImageList_GetImageInfo
ImageList_Draw
ImageList_DrawEx
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_Create
ImageList_Remove
ImageList_GetIcon

oledlg

ord8

ole32

OleDuplicateData
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoDisconnectObject
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CLSIDFromString
CLSIDFromProgID
OleFlushClipboard
OleIsCurrentClipboard
CreateStreamOnHGlobal
StringFromCLSID
ReleaseStgMedium
CoRegisterMessageFilter
CoRegisterClassObject
OleLockRunning
DoDragDrop
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CoRevokeClassObject
CoGetClassObject

olepro32

ord253

oleaut32

VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysStringByteLen
VariantTimeToSystemTime
VarBstrFromDate
SysStringLen
LoadTypeLi
VariantClear
SysAllocStringLen
VariantInit
VarBstrCmp
SysFreeString

wsock32

WSAStartup
WSACleanup
htons
ioctlsocket
ntohl
htonl

winmm

PlaySoundA

oleacc

AccessibleObjectFromWindow
LresultFromObject

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 340KB - Virtual size: 337KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 824KB - Virtual size: 823KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dab94835d1a5773d2901aee196a73559

Headers

File Characteristics

Imports

psapi

shlwapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

winmm

oleacc

Sections

.text Size: 2.2MB - Virtual size: 2.2MB

.rdata Size: 340KB - Virtual size: 337KB

.data Size: 56KB - Virtual size: 78KB

.rsrc Size: 824KB - Virtual size: 823KB

.text
Size: 2.2MB - Virtual size: 2.2MB

.rdata
Size: 340KB - Virtual size: 337KB

.data
Size: 56KB - Virtual size: 78KB

.rsrc
Size: 824KB - Virtual size: 823KB