bcf02760bee3507b336634499683edcb

Sharing

Copy URL

Twitter E-mail

General

Target

bcf02760bee3507b336634499683edcb
Size

540KB
MD5

bcf02760bee3507b336634499683edcb
SHA1

0f09b73ebbc004c6682d532ba2f6a88730d5a888
SHA256

9bd0c5cc6e37b617c2d36c6444ec2b8ecd7ab13a1ad0882716e768ca91843009
SHA512

8d53abe7cf832edc326c7f8c0b50431ee25c6717d8f28835e83a8cbb2109efc905f48e8cfe6b9512b32be0c76bcd08e64a63470854104bdaedcea7c346ab8242
SSDEEP

12288:BmxQ0Lq0ytNovhOSEweVq5WPBWQIcKgN7gtGkmEzJ:Bmu0LotmOSEjVOWUcKAgtRz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bcf02760bee3507b336634499683edcb

Files

bcf02760bee3507b336634499683edcb
.exe windows:4 windows x86 arch:x86

a64d138e295e24c708850e3390dfc3d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ExtractAssociatedIconExW
ShellExecuteA
InternalExtractIconListW
SHAppBarMessage

user32

RegisterClassExA
WinHelpA
DdeCmpStringHandles
GetAltTabInfo
CharPrevExA
EnumDesktopsW
DefWindowProcA
GetClipboardSequenceNumber
ShowWindow
GetKeyState
ScreenToClient
ReplyMessage
GetCaretBlinkTime
CountClipboardFormats
GetWindowModuleFileNameA
MapVirtualKeyW
GetWindowTextW
ChangeDisplaySettingsA
MessageBoxA
GetMonitorInfoA
RegisterClassA
CreateWindowExA
GetWindowInfo
SwapMouseButton
SetWindowsHookA
DestroyWindow
DrawTextA
GetClassInfoExA
IsRectEmpty

comctl32

DestroyPropertySheetPage
ImageList_DragShowNolock
ImageList_GetIcon
ImageList_AddIcon
ImageList_Create
CreatePropertySheetPageA
ImageList_Read
ImageList_SetDragCursorImage
InitMUILanguage
CreateStatusWindow
ImageList_LoadImageA
ImageList_DrawEx
CreateStatusWindowA
MakeDragList
ImageList_GetFlags
CreatePropertySheetPage
ImageList_GetImageInfo
CreateMappedBitmap
ImageList_GetImageCount
ImageList_SetBkColor
ImageList_LoadImageW
ImageList_Remove
CreatePropertySheetPageW
InitCommonControlsEx

advapi32

LookupPrivilegeNameW
InitializeSecurityDescriptor
CryptSetHashParam
CryptEnumProvidersW
CryptHashSessionKey
CryptExportKey
CryptEncrypt
RegCreateKeyW
CryptEnumProviderTypesA
CryptReleaseContext
GetUserNameW
RegNotifyChangeKeyValue
LookupAccountNameW
RegSetKeySecurity
RegOpenKeyA
RegSetValueExW
RegReplaceKeyW
RegSaveKeyA
LookupPrivilegeNameA
RegOpenKeyExW
CryptSetProviderExA

kernel32

HeapReAlloc
GetStdHandle
ReadFile
CompareStringW
GetLastError
GetCurrentProcessId
GetEnvironmentStrings
GetCurrentThreadId
IsBadWritePtr
OpenEventW
GetStringTypeW
InitializeCriticalSection
VirtualProtect
TlsGetValue
FreeEnvironmentStringsW
SetFilePointer
GetStartupInfoA
GetTimeZoneInformation
WriteFile
GetSystemInfo
LCMapStringW
TlsFree
GetPrivateProfileSectionW
WideCharToMultiByte
EnumSystemLocalesA
FlushInstructionCache
SetLastError
GetCPInfo
GetCurrentThread
LeaveCriticalSection
CreateMutexA
GetSystemTimeAsFileTime
GetUserDefaultLCID
GetCommandLineA
HeapAlloc
VirtualAlloc
SetEnvironmentVariableA
MultiByteToWideChar
FlushFileBuffers
IsValidCodePage
GetModuleFileNameA
GetCurrentProcess
TlsSetValue
HeapDestroy
LCMapStringA
GetOEMCP
DeleteCriticalSection
GetEnvironmentStringsW
GetDateFormatA
GetVersionExA
TerminateProcess
SetHandleCount
GetProcAddress
GetTickCount
GetACP
VirtualFree
CreateRemoteThread
CompareStringA
RtlUnwind
HeapFree
LoadLibraryA
GetStringTypeA
CloseHandle
GetLocaleInfoA
UnhandledExceptionFilter
IsValidLocale
GetLocaleInfoW
ExitProcess
SetStdHandle
InterlockedExchange
EnterCriticalSection
TlsAlloc
VirtualQuery
QueryPerformanceCounter
HeapSize
GetFileType
GetModuleHandleA
GetTimeFormatA
FreeEnvironmentStringsA
CreateSemaphoreW
OpenMutexA
HeapCreate

wininet

InternetGetConnectedStateExW
InternetGetLastResponseInfoW
SetUrlCacheConfigInfoA
SetUrlCacheGroupAttributeA
InternetQueryOptionA
InternetGoOnlineA

gdi32

StartPage
CreateDiscardableBitmap
GetObjectW
GetViewportOrgEx
AbortPath
DeleteColorSpace
PlayEnhMetaFileRecord
GetEnhMetaFileHeader

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a64d138e295e24c708850e3390dfc3d0

Headers

File Characteristics

Imports

shell32

user32

comctl32

advapi32

kernel32

wininet

gdi32

Sections

.text Size: 148KB - Virtual size: 147KB

.rdata Size: 252KB - Virtual size: 250KB

.data Size: 112KB - Virtual size: 140KB

.rsrc Size: 24KB - Virtual size: 22KB

.text
Size: 148KB - Virtual size: 147KB

.rdata
Size: 252KB - Virtual size: 250KB

.data
Size: 112KB - Virtual size: 140KB

.rsrc
Size: 24KB - Virtual size: 22KB