bd050828420e41a62606fad3a85f692406e1e06171c57014f4ee4533391ab4c9

Sharing

Copy URL

Twitter E-mail

General

Target

bd050828420e41a62606fad3a85f692406e1e06171c57014f4ee4533391ab4c9
Size

6.5MB
MD5

5e5d0725fae73f2339ac8ad604fd8a48
SHA1

0dd3dba62970aab2c59a2269a5e478a6e30cd6f0
SHA256

bd050828420e41a62606fad3a85f692406e1e06171c57014f4ee4533391ab4c9
SHA512

c583fc74c12eb9cd54596ca47b10bf1c4b3a491d7d2f076e60e685299d1fa25b63f58d8b664ebad0bdc151cf921bff79b758ea7e974aab455198fea6c3256158
SSDEEP

196608:mzUZ+x1t1GshUqgqehvBypSKs3c2SvO+L0mn:VZ+x1t1GshUVlByUKs3cVvOu0mn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd050828420e41a62606fad3a85f692406e1e06171c57014f4ee4533391ab4c9

Files

bd050828420e41a62606fad3a85f692406e1e06171c57014f4ee4533391ab4c9
.dll windows:6 windows x86 arch:x86

0bcfbf7cdd88348cc0c8394c1a39f3b1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
FlushFileBuffers
CloseHandle
GetModuleFileNameW
WriteFile
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetFileType
GetStdHandle
GetOEMCP
LoadLibraryExW
CompareFileTime
IsDebuggerPresent
GetProcessHeap
HeapSize
GetModuleHandleExW
ExitProcess
EnumSystemLocalesW
IsValidLocale
GetLocaleInfoW
LCMapStringW
IsProcessorFeaturePresent
GetProcAddress
GetModuleHandleW
OutputDebugStringW
SetStdHandle
WriteConsoleW
ReadConsoleW
CreateFileW
GetVersion
GetThreadLocale
SetThreadLocale
GetTempPathW
lstrcpynW
HeapDestroy
SignalObjectAndWait
GetUserDefaultLCID
LoadResource
SetErrorMode
SetFilePointer
lstrcpyW
VerifyVersionInfoW
QueryDosDeviceW
GetACP
GetSystemDirectoryW
GetSystemDefaultUILanguage
GetFullPathNameW
EncodePointer
IsValidCodePage
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
DecodePointer
MultiByteToWideChar
GetStringTypeW
GetLastError
HeapReAlloc
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
HeapFree
GetCommandLineA
GetCurrentThreadId
GetCPInfo
HeapAlloc
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount

user32

PostQuitMessage
SetKeyboardState
SetCapture
PostMessageW
GetParent
AttachThreadInput
GetClientRect
DrawEdge
BeginPaint
SetScrollRange
GetDoubleClickTime
WaitMessage
SetDlgItemInt
OffsetRect
SetWindowLongA
GetWindowLongA
SetClassLongA
ModifyMenuW
DefWindowProcA
GetSysColor
GetSysColorBrush
GetMenuItemCount
CheckRadioButton
InsertMenuW
SetCaretPos
GetDlgItemTextW
DestroyWindow
SetWindowRgn
TrackPopupMenu
IsIconic
KillTimer
SetParent
SetFocus
GetDC
GetCapture
GetMenu
GetKeyboardLayout
GetDesktopWindow
SetWindowTextA
EnableWindow
SetDlgItemTextA
SetScrollInfo
GetMessageTime
RegisterClassA
GetDlgItem

gdi32

EndPage
CreateFontIndirectW
GdiFlush
CreateCompatibleDC
SetMapMode
GetObjectType
GetCurrentPositionEx
GetTextExtentExPointA
GetCharWidth32A
RoundRect
IntersectClipRect
MaskBlt
GetCharacterPlacementW
CopyEnhMetaFileA
CreateHalftonePalette
GetDIBColorTable
RectVisible
EndDoc
ExtCreatePen

comdlg32

GetSaveFileNameW

advapi32

RegGetKeySecurity
InitializeSecurityDescriptor
CloseServiceHandle

shell32

ShellExecuteW
SHGetFileInfoW

oleaut32

SysAllocStringLen
VariantInit
VariantChangeType
VariantClear

Sections

.text
Size: 530KB - Virtual size: 530KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0bcfbf7cdd88348cc0c8394c1a39f3b1

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

Sections

.text Size: 530KB - Virtual size: 530KB

.data Size: 5.9MB - Virtual size: 5.9MB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 13KB - Virtual size: 12KB

.text
Size: 530KB - Virtual size: 530KB

.data
Size: 5.9MB - Virtual size: 5.9MB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 13KB - Virtual size: 12KB