bdf3839055ac6421bb1a078873f8710113a18cae929a321dcd718a737ecd67e2

Sharing

Copy URL

Twitter E-mail

General

Target

bdf3839055ac6421bb1a078873f8710113a18cae929a321dcd718a737ecd67e2
Size

724KB
MD5

3faeca748d7444984f354293803ebadc
SHA1

d4a987fa67ffabf26ceaf95376ccbfa99ea1e61f
SHA256

bdf3839055ac6421bb1a078873f8710113a18cae929a321dcd718a737ecd67e2
SHA512

f9c30dceea4afbd37b3cd09fbc4948d583bcc71d812cd08a70dd4fde38b732f6dec577ee3ab7c3aece6210b919ee56acd33b65c7a4697ff699ccf50fa9c52b62
SSDEEP

12288:HIwIduqQi8P8zi3M45oiF2ACLlApqgtj4Z5o+wuSgjawg/SSpmGlYY:HIwIduqQi8P8zi3l5NEVLe5+XSgjawg5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bdf3839055ac6421bb1a078873f8710113a18cae929a321dcd718a737ecd67e2

Files

bdf3839055ac6421bb1a078873f8710113a18cae929a321dcd718a737ecd67e2
.exe windows:4 windows x86 arch:x86

b9d4a1fa37e853c1cd27acb4127a74e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawTextExA
wsprintfA
CharUpperA
GetWindowTextA
FindWindowA
EnumChildWindows
SendMessageTimeoutA
IsWindowEnabled
SetMenuItemInfoA
RemoveMenu
SetTimer
IsClipboardFormatAvailable
OpenClipboard
GetClipboardData
CloseClipboard
GetClassNameA
LoadBitmapA
SetMenu
TrackPopupMenu
GetMenuItemInfoA
InsertMenuItemA
ModifyMenuA
CreatePopupMenu
CreateMenu
ScreenToClient
WindowFromPoint
SetCapture
EnableScrollBar
ShowScrollBar
MapWindowPoints
DrawMenuBar
GetWindowDC
CreateIconIndirect
GetComboBoxInfo
SetScrollRange
DestroyIcon
GetClassLongA
SetClassLongA
SetWindowTextA
EnableWindow
IntersectRect
RedrawWindow
IsZoomed
MessageBoxA
DestroyMenu
MessageBoxIndirectA
GetDlgItem
GetScrollInfo
CopyRect
GetMenuCheckMarkDimensions
PostQuitMessage
GetScrollBarInfo
DrawTextA
LoadImageA
GetIconInfo
LoadIconA
RegisterClassExA
AdjustWindowRect
GetKeyState
ReleaseCapture
GetFocus
GetParent
KillTimer
SetScrollPos
IsWindowVisible
CallWindowProcA
DrawFrameControl
InflateRect
DrawIconEx
DrawFocusRect
FrameRect
BeginPaint
EndPaint
RealChildWindowFromPoint
GetSysColor
SetRect
PostMessageA
DefWindowProcA
GetSystemMetrics
CreateWindowExA
SetWindowLongA
SystemParametersInfoA
ClientToScreen
SetCursorPos
LoadCursorA
SetCursor
SetScrollInfo
ScrollWindowEx
CreateCaret
UpdateWindow
DestroyCaret
DestroyWindow
InvalidateRect
ValidateRect
ShowWindow
HideCaret
FillRect
SetCaretPos
ShowCaret
keybd_event
InvalidateRgn
SetWindowPos
ValidateRgn
SendMessageA
RegisterClassA
IsRectEmpty
EnableMenuItem
GetSystemMenu
CreateDialogParamA
GetUpdateRect
SetFocus
DispatchMessageA
TranslateMessage
GetMessageA
PeekMessageA
GetClientRect
GetWindowLongA
GetDC
ReleaseDC
MoveWindow
GetWindowRect
OemToCharA

kernel32

GetDriveTypeA
FindClose
FileTimeToLocalFileTime
FindFirstFileA
GetFileInformationByHandle
GetFullPathNameA
SetEndOfFile
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
LCMapStringA
RaiseException
FlushFileBuffers
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
MoveFileA
RtlUnwind
SetConsoleCtrlHandler
HeapReAlloc
TerminateProcess
GetTimeZoneInformation
HeapAlloc
HeapFree
ExitProcess
GetVersion
GetStartupInfoA
SetFilePointerEx
GetTempFileNameA
GetTempPathA
DeleteFileA
GetSystemDirectoryA
GetLastError
CreateProcessA
GetEnvironmentVariableA
SetEnvironmentVariableA
CreateDirectoryA
RemoveDirectoryA
GlobalUnlock
GlobalLock
GlobalAlloc
WideCharToMultiByte
MultiByteToWideChar
Sleep
Beep
CloseHandle
CreateFileA
GetTickCount
GetSystemTime
GetProcAddress
LoadLibraryA
GetVersionExA
GetCurrentProcess
WriteFile
GetCommandLineA
GetModuleHandleA
SetCurrentDirectoryA
GetCurrentDirectoryA
MulDiv
GetLocalTime
GlobalFree
GetExitCodeProcess
WaitForSingleObject
CreatePipe
FileTimeToSystemTime
GetFileTime
CreateMutexA
ExitThread
CreateThread
ReleaseMutex
SetThreadPriority
GetThreadPriority
GetCurrentThread
ReadFile
GetFileAttributesA
GetModuleFileNameA
GetFileAttributesExA
DeviceIoControl
WaitNamedPipeA
SetFilePointer
GetFileSize
LockFile
UnlockFile
SetEnvironmentVariableW
GlobalReAlloc
lstrcmpiA
lstrcpyA
GetProfileStringA
GetCurrentProcessId

comctl32

ImageList_ReplaceIcon
ImageList_Add
_TrackMouseEvent
ord17
InitCommonControlsEx
ImageList_Create

gdi32

AbortDoc
CreateDCA
StartDocA
StartPage
EndDoc
EndPage
SetAbortProc
SetStretchBltMode
StretchDIBits
GetDIBits
GetSystemPaletteEntries
GetStockObject
Rectangle
EndPath
StrokePath
StrokeAndFillPath
BeginPath
Arc
Pie
Ellipse
GetBkColor
SetPixel
SelectPalette
RealizePalette
CreateDIBitmap
CreatePalette
CreatePatternBrush
GetPixel
CreateDIBSection
CreateBrushIndirect
GetBkMode
GetObjectA
ExtTextOutA
BitBlt
StretchBlt
SetBkMode
GetTextColor
RectVisible
TextOutA
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
GetMapMode
SetMapMode
SetBkColor
SetTextColor
CreateSolidBrush
GetDeviceCaps
CreatePen
SetROP2
MoveToEx
LineTo
GetTextExtentPoint32A
GetCurrentObject
SelectObject
GetTextMetricsA
DeleteObject
CreateFontIndirectA
CreateFontA

gdiplus

GdipCreateBitmapFromFileICM
GdipFree
GdipCloneImage
GdipCreateBitmapFromFile
GdiplusStartup
GdipCreateHBITMAPFromBitmap
GdipGetImageWidth
GdiplusShutdown
GdipAlloc
GdipGetImageThumbnail
GdipDisposeImage
GdipGetImageHeight

comdlg32

PrintDlgExA
ChooseFontA
GetSaveFileNameA
GetOpenFileNameA

advapi32

GetUserNameA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
LookupPrivilegeNameA
RegQueryInfoKeyA
RegCloseKey
OpenProcessToken
GetTokenInformation

shell32

SHGetDesktopFolder
SHBrowseForFolderA
ShellExecuteExA
SHGetPathFromIDListA

ole32

CreateStreamOnHGlobal
CoInitialize
CoUninitialize

oleaut32

OleLoadPicture

wsock32

WSAStartup
WSACleanup
gethostname

winspool.drv

DocumentPropertiesA
ClosePrinter
EnumPrintersA
OpenPrinterA
GetPrinterA

wininet

InternetWriteFile
InternetQueryDataAvailable
InternetReadFile
InternetOpenA
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
HttpQueryInfoA
FtpGetFileA
InternetCloseHandle

Sections

.text
Size: 616KB - Virtual size: 613KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 19.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b9d4a1fa37e853c1cd27acb4127a74e7

Headers

File Characteristics

Imports

user32

kernel32

comctl32

gdi32

gdiplus

comdlg32

advapi32

shell32

ole32

oleaut32

wsock32

winspool.drv

wininet

Sections

.text Size: 616KB - Virtual size: 613KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 88KB - Virtual size: 19.3MB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 616KB - Virtual size: 613KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 88KB - Virtual size: 19.3MB

.rsrc
Size: 4KB - Virtual size: 3KB