bf8f5a05043a983a0f5e7ed5cfd8bde84fe56f3b2dafaf274ae3372cda1d41d0

Sharing

Copy URL Twitter E-mail

General

Target

bf8f5a05043a983a0f5e7ed5cfd8bde84fe56f3b2dafaf274ae3372cda1d41d0
Size

10.8MB
MD5

6547b7f53a578a2f8bdbe6606e5b3300
SHA1

c80242eed85cf956bd911b4edb9836951e0ef657
SHA256

bf8f5a05043a983a0f5e7ed5cfd8bde84fe56f3b2dafaf274ae3372cda1d41d0
SHA512

98f7c287c2db24df69fe853bf21206168383cef78fe66507dca63f0259905f4a91604a1b43c4e937cc8290d45778f77a1c640770524d3331f3f719e37131c540
SSDEEP

196608:41g4yKJ51LmK8ibpbV+ypx9M7qG4xZgHxIRWZ3VQItmXFgYcx7SHKzhh:4yve1LmjGbV+EM7ggRIRO3VLmXFg719h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bf8f5a05043a983a0f5e7ed5cfd8bde84fe56f3b2dafaf274ae3372cda1d41d0

Files

bf8f5a05043a983a0f5e7ed5cfd8bde84fe56f3b2dafaf274ae3372cda1d41d0
.exe windows:5 windows x86 arch:x86

37f8c77fac01118b6a2cc4828afd030b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetVersionExA
GetVersion
GetVersionExA
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

IsWindowEnabled
TabbedTextOutA
CharUpperBuffW

gdi32

TextOutA
CreateBrushIndirect

wininet

InternetSetOptionA
InternetOpenA

ole32

CoRevokeClassObject

shlwapi

StrToIntExA

oledlg

ord8

oleaut32

SafeArrayAllocData
UnRegisterTypeLi

rasapi32

RasGetConnectStatusA
RasHangUpA

winspool.drv

DocumentPropertiesA
OpenPrinterA

comctl32

ord17
ImageList_DrawIndirect

wsock32

recv

advapi32

RegCloseKey
RegCloseKey

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathA

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

winmm

midiStreamOpen

ws2_32

recvfrom

msimg32

GradientFill

comdlg32

ChooseColorA

wldap32

ord29

Sections

Dream
Size: - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Dream
Size: - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Dream
Size: - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Dream
Size: - Virtual size: 4.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Dream
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Dream
Size: 8.6MB - Virtual size: 8.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Dream
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Dream
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Dream
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Dream
Size: 548KB - Virtual size: 546KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Dream
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

37f8c77fac01118b6a2cc4828afd030b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

wininet

ole32

shlwapi

oledlg

oleaut32

rasapi32

winspool.drv

comctl32

wsock32

advapi32

shell32

msvfw32

avifil32

winmm

ws2_32

msimg32

comdlg32

wldap32

Sections

Dream Size: - Virtual size: 1.7MB

Dream Size: - Virtual size: 2.2MB

Dream Size: - Virtual size: 1.0MB

Dream Size: - Virtual size: 4.5MB

Dream Size: 8KB - Virtual size: 4KB

Dream Size: 8.6MB - Virtual size: 8.6MB

Dream Size: 20KB - Virtual size: 19KB

Dream Size: 1.6MB - Virtual size: 1.6MB

Dream Size: 4KB - Virtual size: 4KB

Dream Size: 548KB - Virtual size: 546KB

Dream Size: 20KB - Virtual size: 19KB

Dream
Size: - Virtual size: 1.7MB

Dream
Size: - Virtual size: 2.2MB

Dream
Size: - Virtual size: 1.0MB

Dream
Size: - Virtual size: 4.5MB

Dream
Size: 8KB - Virtual size: 4KB

Dream
Size: 8.6MB - Virtual size: 8.6MB

Dream
Size: 20KB - Virtual size: 19KB

Dream
Size: 1.6MB - Virtual size: 1.6MB

Dream
Size: 4KB - Virtual size: 4KB

Dream
Size: 548KB - Virtual size: 546KB

Dream
Size: 20KB - Virtual size: 19KB