bdc1556a62ccdf3d7fafdffca2fc9dd5

Sharing

Copy URL Twitter E-mail

General

Target

bdc1556a62ccdf3d7fafdffca2fc9dd5
Size

369KB
MD5

bdc1556a62ccdf3d7fafdffca2fc9dd5
SHA1

2a350d55443cdf3d095ac2268676f09d992a52e2
SHA256

269ddd9e1f38c472b1b956cc00996d8a9cde7f816fb23f173bdf7512d7f87a44
SHA512

033f4285bc8a500351e7132c8685652bbf33259bb2a89f25f52ad0c183e639bc57afe40d3d60b1f8b890b8ca211485173ca9a184853ab837c0e88233e8a88158
SSDEEP

6144:sbO+FJ3xaY0sIihpW2rLFwvyt4Jif1pCa7:sbOX/sIihpW2rKymJitpr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bdc1556a62ccdf3d7fafdffca2fc9dd5

Files

bdc1556a62ccdf3d7fafdffca2fc9dd5
.exe windows:4 windows x86 arch:x86

b2e1d1396e0411fed9cab6d3893e4d87

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA

kernel32

GetTimeZoneInformation
CreateThread
ExitThread
HeapAlloc
GetCommandLineA
ExitProcess
GetSystemTime
GetLocalTime
GetCPInfo
GetACP
HeapFree
GetOEMCP
HeapReAlloc
HeapSize
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
TerminateProcess
GetStdHandle
GetModuleHandleA
GetStartupInfoA
LoadLibraryA
MoveFileA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
GetLocaleInfoA
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetStdHandle
GetLocaleInfoW
MultiByteToWideChar
RaiseException
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
lstrlenA
RemoveDirectoryA
RtlUnwind
GlobalAddAtomA
SizeofResource
GetCurrentDirectoryA
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
GlobalFlags
GetProcessVersion
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalFree
LockResource
FindResourceA
LoadResource
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSize
GetFileAttributesA
GetModuleFileNameA
lstrcmpiA
GetFullPathNameA
GetVolumeInformationA
lstrcpyA
GetProcAddress
HeapDestroy
FreeLibrary
WritePrivateProfileStringA
GetPrivateProfileStringA
DeleteFileA
SetEndOfFile
HeapCreate
UnlockFile
CreateEventA
GetPrivateProfileIntA
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
lstrcpynA
FindNextFileA
FindFirstFileA
GetLastError
SetLastError
FindClose
GlobalLock
GlobalUnlock
MulDiv
FileTimeToLocalFileTime
FileTimeToSystemTime
VirtualFree
VirtualAlloc
GetFileType
GetCurrentThreadId
GetVersionExA
GetDriveTypeA
GetWindowsDirectoryA
LocalFree
LocalAlloc
CopyFileA
GetProfileStringA
ResumeThread
SuspendThread
CloseHandle
WaitForSingleObject
SetEvent
SetThreadPriority

user32

GetMenuItemID
GetSubMenu
GetMenuItemCount
RegisterClassA
GetClassInfoA
WinHelpA
IsChild
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
ShowScrollBar
SetScrollInfo
ScrollWindow
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
DeferWindowPos
EqualRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
SystemParametersInfoA
UpdateWindow
LoadStringA
DestroyMenu
GetSysColorBrush
GetClassNameA
GetMenu
IntersectRect
InflateRect
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
BringWindowToTop
FindWindowA
OffsetRect
GetDesktopWindow
ReleaseCapture
LoadCursorA
GetCapture
GetLastActivePopup
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
PtInRect
DefWindowProcA
WindowFromPoint
GrayStringA
DrawTextA
TabbedTextOutA
GetWindowDC
GetDC
ShowWindow
SetWindowPos
MoveWindow
SetWindowLongA
GetWindowTextA
SetWindowTextA
GetWindowLongA
IsDialogMessageA
SendDlgItemMessageA
GetDlgItem
UnhookWindowsHookEx
wsprintfA
MessageBoxA
SetCursor
ShowOwnedPopups
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
IsWindowVisible
EnableWindow
GetWindowRect
ScreenToClient
LockWindowUpdate
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
CreateWindowExA
GetSystemMenu
AppendMenuA
LoadIconA
SendMessageA
GetClassLongA
SetPropA
GetForegroundWindow
SetForegroundWindow
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetWindow
RegisterWindowMessageA
ClientToScreen
RedrawWindow
EndPaint
BeginPaint
PostQuitMessage
PostMessageA
CharUpperA
ExitWindowsEx
IsWindowEnabled
SetFocus
GetWindowTextLengthA
GetDlgCtrlID
ReleaseDC
DrawFocusRect
DefDlgProcA
UnregisterClassA
ShowCaret
IsWindowUnicode
CharNextA
HideCaret
ExcludeUpdateRgn

gdi32

CreateBitmap
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkColor
SetBkMode
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
CreateCompatibleDC
ScaleWindowExtEx
GetClipBox
IntersectClipRect
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
GetObjectA
GetTextExtentPointA
BitBlt
DeleteDC
CreateDIBitmap

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegQueryValueExA
RegDeleteKeyA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegEnumValueA
RegDeleteValueA
RegOpenKeyExA
RegEnumKeyExA

shell32

DragQueryFileA
DragFinish

comctl32

ImageList_Destroy
ord17

Sections

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 21KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 149KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b2e1d1396e0411fed9cab6d3893e4d87

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 160KB - Virtual size: 160KB

.rdata Size: 37KB - Virtual size: 36KB

.data Size: 21KB - Virtual size: 37KB

.rsrc Size: 149KB - Virtual size: 152KB

.text
Size: 160KB - Virtual size: 160KB

.rdata
Size: 37KB - Virtual size: 36KB

.data
Size: 21KB - Virtual size: 37KB

.rsrc
Size: 149KB - Virtual size: 152KB