bcb1fee7500973eb7d732d197c04351349c30e018d3f6033b46201b09fa983bb

Sharing

Copy URL Twitter E-mail

General

Target

bcb1fee7500973eb7d732d197c04351349c30e018d3f6033b46201b09fa983bb
Size

3.6MB
MD5

37e3f0eb30d15c0246c9bee7ffa9468f
SHA1

9de64e9162b53345f90cfb4e951f79efbdb58344
SHA256

bcb1fee7500973eb7d732d197c04351349c30e018d3f6033b46201b09fa983bb
SHA512

43f07caa9375c1ab4cf3a1f89537e2609c0dfee71d2826bf537cc28a3a75a938eb8be7d86e52f29d93cee0d6284380d9515e903cb95085f2c6188d1018da914b
SSDEEP

49152:1TGN7gSUNzn19yAik0ELQVUUE1txbI4Flnej5IaH+QQ8Nn7iq4XM:ZGR4RnU9EMWTxbXFouae1Q7iqUM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bcb1fee7500973eb7d732d197c04351349c30e018d3f6033b46201b09fa983bb

Files

bcb1fee7500973eb7d732d197c04351349c30e018d3f6033b46201b09fa983bb
.exe windows:4 windows x86

2406edda4c33efef6c914e2f8eb4e88f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundW

comctl32

ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_LoadImageW
ImageList_Read
ImageList_Remove
ImageList_Replace
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_SetIconSize
ImageList_SetImageCount
ImageList_SetOverlayImage
ImageList_Write
ord17
InitializeFlatSB
FlatSB_GetScrollPos
FlatSB_SetScrollInfo
FlatSB_SetScrollPos
FlatSB_SetScrollProp
ImageList_AddMasked
ImageList_BeginDrag
ImageList_Copy
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
ImageList_DrawEx
FlatSB_GetScrollInfo
ImageList_EndDrag

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

kernel32

GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
GetStringTypeA
InterlockedDecrement
InterlockedIncrement
HeapReAlloc
HeapCreate
GetVersionExA
GetEnvironmentVariableA
TlsAlloc
RtlUnwind
GetModuleHandleA
HeapFree
HeapAlloc
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
WriteFile
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjectsEx
VirtualQueryEx
VirtualQuery
VirtualFree
VirtualAlloc
UnmapViewOfFile
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
SuspendThread
Sleep
SizeofResource
SetThreadPriority
SetThreadLocale
SetLastError
SetFilePointer
SetEvent
SetErrorMode
SetEndOfFile
ResumeThread
ResetEvent
ReadFile
RaiseException
QueryDosDeviceW
MultiByteToWideChar
MulDiv
MoveFileW
MapViewOfFile
lstrlenW
lstrcpynW
lstrcmpW
lstrcmpiA
LockResource
LocalFree
LocalAlloc
LoadResource
LoadLibraryW
LoadLibraryExW
IsValidLocale
InterlockedExchangeAdd
InterlockedCompareExchange
GlobalUnlock
GlobalSize
GlobalLock
GlobalHandle
GlobalFree
GlobalFindAtomW
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomW
GetVersionExW
GetVersion
GetTimeZoneInformation
GetTimeFormatW
GetThreadPriority
GetThreadLocale
GetSystemInfo
GetStringTypeW
GetStdHandle
GetFileType
GetProcAddress
GetModuleHandleW
GetLogicalDriveStringsW
GetLocaleInfoW
GetFullPathNameW
GetFileSize
GetFileAttributesW
GetExitCodeThread
GetDiskFreeSpaceW
GetDateFormatW
GetCPInfoExW
GetComputerNameW
FreeResource
FreeLibrary
FormatMessageW
FindResourceW
FindFirstFileW
FindClose
ExitThread
ExitProcess
EnumSystemLocalesW
EnumCalendarInfoW
DeleteCriticalSection
CreateThread
CreateFileW
CreateFileMappingW
CreateEventW
CompareStringW
CloseHandle
GetStartupInfoA
GetLocalTime
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
LoadLibraryA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetModuleFileNameW
GetCommandLineW
GetConsoleMode
GetLastError
HeapDestroy

user32

SetWindowPlacement
SetWindowLongW
SetTimer
SetScrollRange
SetScrollPos
SetScrollInfo
SetRectEmpty
SetPropW
SetParent
SetMenuItemInfoW
SetMenuDefaultItem
SetForegroundWindow
SetFocus
SetCursorPos
SetClipboardData
SetClassLongW
SetCapture
SetActiveWindow
SendNotifyMessageW
SendMessageW
SendMessageA
ScrollWindowEx
ScreenToClient
RemovePropW
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterClipboardFormatW
RegisterClassW
RedrawWindow
PtInRect
PostQuitMessage
PostMessageW
PeekMessageW
PeekMessageA
OpenClipboard
OffsetRect
MsgWaitForMultipleObjectsEx
MessageBoxW
MessageBoxA
MessageBeep
MapWindowPoints
MapVirtualKeyW
LockWindowUpdate
LoadMenuW
LoadKeyboardLayoutW
LoadIconW
LoadCursorW
LoadBitmapW
KillTimer
IsZoomed
IsWindowVisible
IsWindowUnicode
IsWindowEnabled
IsRectEmpty
IsMenu
IsIconic
IsDialogMessageW
IsDialogMessageA
IsClipboardFormatAvailable
IsChild
InvalidateRgn
InvalidateRect
IntersectRect
InsertMenuW
InsertMenuItemW
InflateRect
HideCaret
GetWindowThreadProcessId
GetWindowTextW
GetWindowRgn
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowDC
SetWindowPos
GetSystemMenu
GetSysColorBrush
GetSubMenu
GetScrollRange
GetScrollInfo
GetPropW
GetParent
GetMessageW
GetMessagePos
GetMessageExtraInfo
GetMenuStringW
GetMenuState
GetMenuItemRect
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
GetLastActivePopup
GetKeyState
GetKeyNameTextW
GetKeyboardState
GetKeyboardLayoutNameW
GetKeyboardLayoutList
GetIconInfo
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItem
GetDesktopWindow
GetDCEx
GetCursorPos
GetClipboardData
GetClientRect
GetClassNameW
GetClassLongW
GetClassInfoW
GetCaretPos
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FindWindowW
FindWindowExW
FillRect
EqualRect
EnumWindows
EnumThreadWindows
EnumClipboardFormats
EnumChildWindows
EndPaint
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextExW
DrawTextA
DrawMenuBar
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DragDetect
DispatchMessageW
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DeleteMenu
DefWindowProcW
DefMDIChildProcW
DefFrameProcW
CreateWindowExW
CreatePopupMenu
CreateMenu
SetWindowRgn
SetWindowsHookExW
SetWindowTextW
ShowCaret
ShowOwnedPopups
GetTabbedTextExtentA
ShowScrollBar
CreateIcon
CreateAcceleratorTableW
CountClipboardFormats
CopyImage
CopyIcon
CloseClipboard
ClientToScreen
ChildWindowFromPointEx
CheckMenuItem
CharUpperW
VkKeyScanA
WindowFromPoint
WaitMessage
VkKeyScanW
ValidateRect
UpdateWindow
UnregisterClassW
UnionRect
UnhookWindowsHookEx
TranslateMessage
TranslateMDISysAccel
TrackPopupMenuEx
ToUnicode
TabbedTextOutW
TabbedTextOutA
SubtractRect
GetScrollPos
ShowWindow
CharUpperBuffW
CharNextW
CharLowerW
CharLowerBuffW
CallWindowProcW
CallNextHookEx
BeginPaint
AdjustWindowRectEx
ActivateKeyboardLayout
GetSysColor
SystemParametersInfoW
GetSystemMetrics
LoadStringW

gdi32

CreatePalette
CreatePatternBrush
CreatePenIndirect
CreatePolygonRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteEnhMetaFile
DeleteObject
DPtoLP
Ellipse
EndDoc
EndPage
EndPath
EnumFontFamiliesExW
EnumFontsW
EqualRgn
ExcludeClipRect
ExtFloodFill
ExtSelectClipRgn
ExtTextOutA
ExtTextOutW
FillPath
FillRgn
FrameRgn
GdiFlush
GetBitmapBits
GetBkColor
GetBkMode
GetBrushOrgEx
GetClipBox
GetClipRgn
GetCurrentObject
GetCurrentPositionEx
GetDCOrgEx
GetDeviceCaps
GetDIBColorTable
GetDIBits
GetEnhMetaFileBits
GetEnhMetaFileDescriptionW
CreateICW
GetEnhMetaFilePaletteEntries
GetNearestColor
GetObjectType
GetObjectW
GetPaletteEntries
GetPixel
GetRgnBox
CreateHalftonePalette
GetStockObject
GetSystemPaletteEntries
GetTextColor
GetTextExtentExPointA
GetTextExtentExPointW
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextExtentPointW
GetTextMetricsA
GetTextMetricsW
GetViewportOrgEx
GetWindowOrgEx
GetWinMetaFileBits
IntersectClipRect
LineTo
MaskBlt
MoveToEx
OffsetRgn
OffsetWindowOrgEx
PatBlt
PathToRegion
Pie
PlayEnhMetaFile
PolyBezierTo
Polygon
Polyline
PolyPolyline
PtInRegion
RealizePalette
Rectangle
RectInRegion
RectVisible
RestoreDC
RoundRect
SaveDC
SelectClipPath
SelectClipRgn
SelectObject
SelectPalette
SetAbortProc
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBColorTable
SetDIBits
SetEnhMetaFileBits
SetPixel
SetRectRgn
SetROP2
SetStretchBltMode
SetTextColor
SetTextJustification
SetViewportOrgEx
SetWindowOrgEx
SetWinMetaFileBits
StartDocW
StartPage
StretchBlt
StretchDIBits
StrokePath
TextOutA
TextOutW
UnrealizeObject
AngleArc
UpdateColors
WidenPath
CreateFontIndirectW
CreateEllipticRgn
CreateDIBSection
CreateDIBitmap
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmap
CopyEnhMetaFileW
CombineRgn
Chord
BitBlt
BeginPath
GetROP2
ArcTo
GetEnhMetaFileHeader
AbortDoc

winspool.drv

EnumPrintersW
OpenPrinterW
DocumentPropertiesW
ClosePrinter

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

RegQueryValueExW
RegConnectRegistryW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegEnumValueW
RegFlushKey
RegLoadKeyW
RegQueryInfoKeyW
RegReplaceKeyW
RegRestoreKeyW
RegSaveKeyW
RegSetValueExW
RegUnLoadKeyW
RegCloseKey
RegOpenKeyExW

shell32

Shell_NotifyIconW
DragQueryFileW
DragFinish
DragAcceptFiles
CommandLineToArgvW
ShellExecuteW

ole32

CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
ProgIDFromCLSID
StringFromCLSID

oleaut32

VariantCopyInd
VariantClear
VariantChangeType
SysReAllocStringLen
SysFreeString
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElement
SafeArrayCreate
SafeArrayAccessData
GetErrorInfo
GetActiveObject
VariantInit

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cdata4
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.btls2
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 440KB - Virtual size: 438KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rmi1012
Size: 799KB - Virtual size: 799KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2406edda4c33efef6c914e2f8eb4e88f

Headers

File Characteristics

Imports

winmm

comctl32

version

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.cdata4 Size: 16KB - Virtual size: 15KB

.data Size: 12KB - Virtual size: 4.0MB

.btls2 Size: 8KB - Virtual size: 4KB

.rsrc Size: 440KB - Virtual size: 438KB

rmi1012 Size: 799KB - Virtual size: 799KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.cdata4
Size: 16KB - Virtual size: 15KB

.data
Size: 12KB - Virtual size: 4.0MB

.btls2
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 440KB - Virtual size: 438KB

rmi1012
Size: 799KB - Virtual size: 799KB