1c8743843e7dcdc405dcfdc5745a05d66f8807740d0d7e3cd169172b9559c0d8

Sharing

Copy URL

Twitter E-mail

General

Target

1c8743843e7dcdc405dcfdc5745a05d66f8807740d0d7e3cd169172b9559c0d8
Size

138KB
MD5

e70dc7260416996a8b62ff3b6e0420f6
SHA1

3ad2783d4bc4ffd6d0a2dd4a61f16229b27839d0
SHA256

1c8743843e7dcdc405dcfdc5745a05d66f8807740d0d7e3cd169172b9559c0d8
SHA512

260dfd93c94cf67c91345a1d8c6a5c2399633e25b53b8ad3d87b246235893a385728c86229f36ac257fe20d5dd979248af2c90b5b93f9dc402a0d59b6b71662e
SSDEEP

3072:ZvSUmubsu8C2yUHrPTsB9Qim+lISUOdyyDSaS/Ofozd4YnM7nu3FmXbHgaf1a14B:ZvSUm4su8C2yCrPTsB9Qim+lISUOdyyJ

Score

N/A

Malware Config

Signatures

Files

1c8743843e7dcdc405dcfdc5745a05d66f8807740d0d7e3cd169172b9559c0d8
.exe windows x86

1cfea14b454ca63075717cdaec41f248

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

cfgmgr32

CM_Add_Empty_Log_Conf
CMP_Init_Detection
CM_Add_Range
CM_Add_IDA
CMP_Report_LogOn

crypt32

CryptMsgGetParam
CertFreeCTLContext
CertGetStoreProperty
CertCreateCRLContext
CertGetNameStringA
CertOpenStore
CertFindCTLInStore
CryptMsgUpdate
CertEnumSystemStore
CertDeleteCTLFromStore
CryptProtectData
CertOIDToAlgId
CertControlStore

comsvcs

CoCreateActivity
CoEnterServiceDomain
CoLoadServices
SafeRef
RecycleSurrogate

shlwapi

UrlGetLocationA
PathIsPrefixW
UrlIsW
PathIsRootA
UrlCreateFromPathA
SHDeleteKeyA
UrlGetPartW
PathCommonPrefixA
PathCompactPathW
UrlIsNoHistoryW
UrlCanonicalizeW
UrlCompareA
UrlEscapeW

user32

MessageBoxA
SetFocus
InsertMenuW
FindWindowW
GetMessageA
DispatchMessageA
GetDlgItemTextW
DialogBoxParamW
LoadMenuW
CharToOemW
CreateDesktopW
DrawStateW
IsDialogMessageA
PeekMessageA

kernel32

WriteFile
LoadLibraryExA
GetCommandLineA
OpenSemaphoreW
GetLogicalDriveStringsW
lstrcpy
LeaveCriticalSection
WaitForSingleObject
CreateMutexA
GetACP
GetModuleHandleA
GetStringTypeW
GetConsoleAliasW
lstrcpy
Heap32First
CreateFileA
GetOEMCP
GetProcAddress

Sections

.text
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1cfea14b454ca63075717cdaec41f248

Headers

DLL Characteristics

File Characteristics

Imports

cfgmgr32

crypt32

comsvcs

shlwapi

user32

kernel32

Sections

.text Size: 118KB - Virtual size: 117KB

.rdata Size: 15KB - Virtual size: 15KB

.data Size: 1KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 118KB - Virtual size: 117KB

.rdata
Size: 15KB - Virtual size: 15KB

.data
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 1KB