7fe44454dc34cf6cac55d9e507ef6122cac35a60cdc21457aa5cde1df74fad80

Sharing

Copy URL

Twitter E-mail

General

Target

7fe44454dc34cf6cac55d9e507ef6122cac35a60cdc21457aa5cde1df74fad80
Size

196KB
MD5

732d8ed0204661e50dea5d020af53d6b
SHA1

dcb28135c85ac4945fcda05c567972d3a163e93b
SHA256

7fe44454dc34cf6cac55d9e507ef6122cac35a60cdc21457aa5cde1df74fad80
SHA512

2c0f67af9f3f83650516a39bd2be813ca730c322125e29f9f591c414b335f9afb7578b49db052b04501d960d44177a0688ef8ce3b89ae50d02b8623ff6e98fd5
SSDEEP

6144:v7TwtxOQFSopADoq71cjtxG7B8xW3cfi/KWf5WdtT:nkx3eN71mccOKSQtT

Score

N/A

Malware Config

Signatures

Files

7fe44454dc34cf6cac55d9e507ef6122cac35a60cdc21457aa5cde1df74fad80
.exe windows x86

4b233c73757e519f962544ff2f18f6a6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CARemoveCACertificateType
CACertTypeSetSecurity
CAFreeCertTypeProperty
CAEnumNextCertType
CAGetCertTypePropertyEx
CASetCertTypeKeySpec
CAGetCertTypeExtensions
CAEnumCertTypes
CAFindByName
CAFreeCAProperty
CAGetCAProperty
CAGetCertTypeFlags
CASetCertTypeExtension
CACloseCA
CAEnumCertTypesForCA
CAUpdateCA
CASetCertTypeFlags
CACreateCertType
CACertTypeGetSecurity
CASetCertTypeProperty
CAUpdateCertType
CAAddCACertificateType
CAFreeCertTypeExtensions
CACloseCertType
CAFindCertTypeByName
CAGetCertTypeKeySpec
CAGetCertTypeProperty

kernel32

GlobalFree
GetStartupInfoA
SetLastError
GetProcAddress
FileTimeToLocalFileTime
GetSystemDefaultLangID
WideCharToMultiByte
lstrlenW
LocalFree
GetModuleFileNameW
GetComputerNameW
OutputDebugStringW
FileTimeToSystemTime
GetEnvironmentStringsW
RemoveDirectoryA
QueryPerformanceCounter
InterlockedDecrement
GetCPInfo
CloseHandle
LoadLibraryW
GetCurrentProcess
GetSystemTimeAsFileTime
InitializeCriticalSection
CreateFileW
GetDateFormatW
OutputDebugStringA
LocalReAlloc
GlobalAlloc
FormatMessageW
SetUnhandledExceptionFilter
DeleteCriticalSection
GetModuleHandleA
GlobalUnlock
GetTickCount
lstrcmpiW
GetSystemWindowsDirectoryW
lstrcpyW
GlobalLock
GetLastError
IsBadReadPtr
InterlockedIncrement

msvcrt

__dllonexit
?terminate@@YAXXZ
wcsstr
_wcsicmp
??3@YAXPAX@Z
wcsrchr
_onexit
_adjust_fdiv
free
memmove
mbstowcs
wcscmp
_initterm
wcstoul
_wcsupr
wcslen
??1type_info@@UAE@XZ
malloc
vswprintf
wcscpy
_except_handler3
__RTDynamicCast
wcschr
wcscat
??2@YAPAXI@Z

user32

LoadStringW
EnableWindow
SetDlgItemTextW
EndDialog
LoadCursorW
SetCursor
SetWindowTextW
GetDC
SystemParametersInfoW
DialogBoxParamW
WinHelpW
GetWindowLongW
RegisterClipboardFormatW
SetFocus
LoadImageW
SendDlgItemMessageW
wsprintfW
LoadIconW
GetDlgItem
LoadBitmapW
SendMessageW
SetWindowLongW
InsertMenuItemW
GetParent
GetDlgItemTextA
MessageBoxW
ReleaseDC
PostMessageW

advapi32

RegCreateKeyExW
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW
RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b233c73757e519f962544ff2f18f6a6

Headers

File Characteristics

Imports

certcli

kernel32

msvcrt

user32

advapi32

comctl32

Sections

.text Size: 76KB - Virtual size: 76KB

.data Size: 69KB - Virtual size: 69KB

.data Size: 46KB - Virtual size: 6.2MB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 76KB - Virtual size: 76KB

.data
Size: 69KB - Virtual size: 69KB

.data
Size: 46KB - Virtual size: 6.2MB

.rsrc
Size: 1KB - Virtual size: 1KB