E:\w\devel\CAP4\bandicam\bin\bdfix.pdb
Static task
static1
Behavioral task
behavioral1
Sample
b6bcdbd5822720d72a949b018443c758725389d96cffb16a146830c567c302d2.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
b6bcdbd5822720d72a949b018443c758725389d96cffb16a146830c567c302d2.exe
Resource
win10v2004-20241007-en
General
-
Target
b6bcdbd5822720d72a949b018443c758725389d96cffb16a146830c567c302d2.exe
-
Size
7.7MB
-
MD5
493a5c9a1469cef994d69f1dd102e0da
-
SHA1
d05de864d273343c4204e9608330a1867a24fa95
-
SHA256
b6bcdbd5822720d72a949b018443c758725389d96cffb16a146830c567c302d2
-
SHA512
34fc3dfd16322318e1c48a2ee0446a14005ff2cefe156844e2a868a907c3d7bf8791496d04928146365af646113cadf0f7bbe31c5c0501dd1e97a90310e7fa96
-
SSDEEP
98304:w3x3FJ58yNYqDP06ZKkcCOQhrgMSVV+uKIqKpFfAlGhrQ:w31H5nqIKCD9uKIqK73B
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b6bcdbd5822720d72a949b018443c758725389d96cffb16a146830c567c302d2.exe
Files
-
b6bcdbd5822720d72a949b018443c758725389d96cffb16a146830c567c302d2.exe.exe windows:6 windows x86 arch:x86
dc5cd5b447a0ccf57bc11e28c800855e
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
LCMapStringW
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
VirtualQuery
HeapQueryInformation
GetCommandLineW
GetCommandLineA
FindFirstFileExW
FreeLibraryAndExitThread
ExitThread
CreateThread
RtlUnwind
LoadLibraryExA
VirtualFree
VirtualAlloc
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
SetFilePointerEx
GetConsoleCP
GetConsoleMode
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStringTypeW
WriteConsoleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
QueryPerformanceCounter
WaitForSingleObjectEx
IsProcessorFeaturePresent
UnhandledExceptionFilter
SearchPathW
GetProfileIntW
VerifyVersionInfoW
VerSetConditionMask
GetWindowsDirectoryW
GetTickCount
ReadConsoleW
GetFileAttributesExW
FileTimeToLocalFileTime
SetErrorMode
VirtualProtect
lstrcmpiW
DuplicateHandle
UnlockFile
SetEndOfFile
LockFile
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetThreadLocale
GlobalGetAtomNameW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
CompareStringW
GlobalFindAtomW
EncodePointer
GlobalAddAtomW
ResumeThread
SetThreadPriority
CreateEventW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
LoadLibraryA
GetModuleHandleA
CopyFileW
FormatMessageW
DecodePointer
CreateFileA
GetCurrentThreadId
Sleep
InitializeCriticalSectionEx
RaiseException
GlobalSize
GlobalUnlock
GlobalLock
FlushFileBuffers
ExitProcess
SetUnhandledExceptionFilter
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
ResetEvent
SetEvent
CreateEventA
WriteFile
FindResourceExW
GetProcessHeap
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
HeapDestroy
MulDiv
lstrcmpW
GetVersionExW
GetSystemInfo
TerminateProcess
GetCurrentProcessId
WaitForSingleObject
MultiByteToWideChar
WideCharToMultiByte
GetFullPathNameW
LocalFree
GetFileSizeEx
GetFileSize
GetFileAttributesW
DeleteFileW
GetTempFileNameW
GetTempPathW
GetCurrentDirectoryW
GetSystemDirectoryW
GetModuleFileNameW
GetDiskFreeSpaceW
GlobalFree
GlobalAlloc
GetCurrentThread
GetCurrentProcess
FreeLibrary
LoadLibraryW
GetProcAddress
GetModuleHandleW
GetVolumeInformationW
SetLastError
FindClose
FindNextFileW
lstrcpyW
FindFirstFileW
SystemTimeToTzSpecificLocalTime
GetTimeZoneInformation
FileTimeToSystemTime
GetSystemTimeAsFileTime
GetFileTime
FindResourceW
GetLastError
LoadResource
LockResource
SizeofResource
ReadFile
SetFilePointer
CreateFileW
OutputDebugStringA
OutputDebugStringW
lstrlenW
CloseHandle
GetModuleHandleExW
user32
MonitorFromWindow
WinHelpW
GetScrollInfo
GetTopWindow
AdjustWindowRectEx
ShowScrollBar
GetScrollRange
GetScrollPos
ScrollWindow
RedrawWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
IsChild
IsMenu
GetClassInfoW
GetMessageTime
GetMessagePos
UnhookWindowsHookEx
GetLastActivePopup
MessageBoxW
ShowOwnedPopups
CallNextHookEx
SetWindowsHookExW
ValidateRect
GetMessageW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
MapDialogRect
GetWindow
SetWindowContextHelpId
PostQuitMessage
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuState
DrawIcon
SetClassLongW
LoadIconW
GetFocus
IsWindowEnabled
GetWindowTextLengthW
RemovePropW
GetPropW
RegisterClassW
DestroyMenu
LoadMenuW
TrackMouseEvent
UnionRect
SetPropW
ReleaseCapture
SetWindowRgn
SetCapture
KillTimer
SetTimer
CallWindowProcW
InflateRect
GetCursorPos
RegisterClassExW
GetClassInfoExW
DefWindowProcW
GetSysColor
SetScrollInfo
SetScrollRange
SetScrollPos
SetFocus
EnableWindow
ShowWindow
InvalidateRect
GetWindowDC
CheckDlgButton
EndPaint
BeginPaint
PostMessageW
UnpackDDElParam
ReuseDDElParam
SendMessageW
CreateWindowExW
GetKeyState
LoadCursorW
DestroyWindow
PtInRect
SetCursor
UnregisterClassW
GetClientRect
IsClipboardFormatAvailable
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
IntersectRect
GetSubMenu
GetMenuItemInfoW
ModifyMenuW
GetMenuItemID
GetMenuStringW
GetMenuItemCount
SetWindowLongW
MapWindowPoints
IsDialogMessageW
DrawTextExW
GrayStringW
TabbedTextOutW
FillRect
GetSysColorBrush
CopyImage
DeleteMenu
RealChildWindowFromPoint
CharNextW
CopyAcceleratorTableW
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
SendDlgItemMessageA
CharUpperW
SetWindowTextW
GetDlgCtrlID
GetAsyncKeyState
RegisterClipboardFormatW
CreatePopupMenu
GetMenuDefaultItem
LoadImageW
PostThreadMessageW
WindowFromPoint
DrawFocusRect
DrawIconEx
GetIconInfo
EnableScrollBar
GetSystemMetrics
SystemParametersInfoW
GetWindowRect
MonitorFromRect
GetMonitorInfoW
CopyRect
MonitorFromPoint
OffsetRect
EqualRect
MoveWindow
GetWindowLongW
SetWindowPos
ScreenToClient
ClientToScreen
PeekMessageW
TranslateMessage
DispatchMessageW
IsWindow
GetParent
GetDesktopWindow
GetWindowThreadProcessId
IsWindowVisible
IsIconic
GetWindowTextW
GetWindowPlacement
GetForegroundWindow
SetForegroundWindow
BringWindowToTop
InsertMenuItemW
GetDC
ReleaseDC
RegisterWindowMessageW
DestroyIcon
DrawTextW
IsRectEmpty
GetClassNameW
GetClassLongW
SetRectEmpty
SetRect
GetComboBoxInfo
WaitMessage
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
CharUpperBuffW
GetUpdateRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
TranslateAcceleratorW
LoadAcceleratorsW
UpdateLayeredWindow
FrameRect
CopyIcon
SetCursorPos
GetSystemMenu
IsZoomed
DrawFrameControl
DrawEdge
SetParent
DrawStateW
EnumDisplayMonitors
SetLayeredWindowAttributes
GetKeyNameTextW
MapVirtualKeyW
NotifyWinEvent
InvertRect
HideCaret
gdi32
CopyMetaFileW
CreateDCW
CreateBitmap
CreateHatchBrush
CreatePen
CreatePatternBrush
Escape
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
TextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
OffsetWindowOrgEx
CreateSolidBrush
ScaleWindowExtEx
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
GetMapMode
PatBlt
SetRectRgn
DPtoLP
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
GetTextCharsetInfo
SetPixel
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
LPtoDP
Rectangle
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceW
ExtCreateRegion
MoveToEx
LineTo
CombineRgn
OffsetRgn
CreateRectRgn
ExcludeClipRect
SetWindowOrgEx
CreateCompatibleBitmap
CreateFontIndirectW
StretchBlt
BitBlt
CreateDIBSection
GetDeviceCaps
SelectObject
SetTextColor
SetBkMode
DeleteDC
CreateFontW
DeleteObject
ExtTextOutW
SetBkColor
EnumFontFamiliesW
GetObjectW
GetStockObject
GetTextMetricsW
ScaleViewportExtEx
CreateCompatibleDC
GetTextExtentPoint32W
msimg32
TransparentBlt
AlphaBlend
comdlg32
GetSaveFileNameW
GetOpenFileNameW
winspool.drv
DocumentPropertiesW
OpenPrinterW
ClosePrinter
advapi32
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegDeleteKeyW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
shell32
SHGetPathFromIDListW
SHBrowseForFolderW
ord190
SHOpenFolderAndSelectItems
ord155
ShellExecuteW
DragQueryFileW
SHAppBarMessage
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetFileInfoW
DragFinish
comctl32
InitCommonControlsEx
shlwapi
PathIsDirectoryW
StrStrW
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
StrFormatKBSizeW
PathIsUNCW
PathStripToRootW
uxtheme
GetThemePartSize
GetThemeSysColor
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetWindowTheme
IsAppThemed
IsThemeBackgroundPartiallyTransparent
ole32
CoRegisterMessageFilter
CreateStreamOnHGlobal
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning
OleIsCurrentClipboard
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoRevokeClassObject
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoInitializeEx
ReleaseStgMedium
OleDuplicateData
CoInitialize
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
OleFlushClipboard
CoCreateGuid
oleaut32
OleCreateFontIndirect
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
LoadTypeLi
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocString
SysStringLen
SysFreeString
oledlg
OleUIBusyW
gdiplus
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdipDrawImageRectI
GdipSetInterpolationMode
GdiplusShutdown
GdipBitmapLockBits
winmm
PlaySoundW
oleacc
CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject
imm32
ImmGetContext
ImmReleaseContext
ImmGetOpenStatus
Sections
.text Size: 2.1MB - Virtual size: 2.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 440KB - Virtual size: 439KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 45KB - Virtual size: 66KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4.9MB - Virtual size: 4.9MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 156KB - Virtual size: 155KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ