9c70b30b3fbfe3c8321724245493561fb46629659152d7ca5d1def9d3862b3d1

Sharing

Copy URL Twitter E-mail

General

Target

9c70b30b3fbfe3c8321724245493561fb46629659152d7ca5d1def9d3862b3d1
Size

199KB
MD5

665850aba0d62af258a21f1f4c80c2a6
SHA1

8d9d47fdf252469c3405cc19a051a6aa790d5a20
SHA256

9c70b30b3fbfe3c8321724245493561fb46629659152d7ca5d1def9d3862b3d1
SHA512

4a856db0fb57c7e0138e868a55dd6414933a9621d5476907acb568f7cb93cef93fdf9f40133ebf655391e87269998cc360ceb056299c09d42e8357b3fef346ce
SSDEEP

6144:2Q9HxlsbsDgouiKFa5Nv02fPjLDOquNWb/vly:zTMsW69ZP/aqf/v8

Score

N/A

Malware Config

Signatures

Files

9c70b30b3fbfe3c8321724245493561fb46629659152d7ca5d1def9d3862b3d1
.exe windows x86

44ee262583a2e03b9ccd0be78ac8cf9c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAGetCertTypeProperty
CAGetCertTypeExtensions
CAUpdateCertType
CASetCertTypeKeySpec
CARemoveCACertificateType
CASetCertTypeExtension
CAFindByName
CAFreeCertTypeProperty
CASetCertTypeProperty
CACertTypeSetSecurity
CAGetCertTypeKeySpec
CAGetCertTypeFlags
CACreateCertType
CAGetCAProperty
CAFreeCertTypeExtensions
CAAddCACertificateType
CAEnumCertTypesForCA
CAGetCertTypePropertyEx
CACloseCA
CASetCertTypeFlags
CAUpdateCA
CAFindCertTypeByName
CACertTypeGetSecurity
CACloseCertType
CAFreeCAProperty
CAEnumNextCertType
CAEnumCertTypes

user32

SendMessageW
DialogBoxParamW
GetDlgItemTextA
SetFocus
wsprintfW
MessageBoxW
InsertMenuItemW
EnableWindow
LoadCursorW
ReleaseDC
EndDialog
SystemParametersInfoW
SendDlgItemMessageW
GetWindowLongW
LoadStringW
LoadIconW
SetDlgItemTextW
LoadBitmapW
SetWindowTextW
SetWindowLongW
GetParent
WinHelpW
GetDC
RegisterClipboardFormatW
SetCursor
GetDlgItem
PostMessageW
LoadImageW

kernel32

GlobalLock
GetCurrentProcess
FileTimeToSystemTime
FileTimeToLocalFileTime
DeleteCriticalSection
LoadLibraryW
GetModuleHandleA
LocalReAlloc
SetUnhandledExceptionFilter
WideCharToMultiByte
InterlockedDecrement
LocalFree
GetSystemWindowsDirectoryW
IsBadReadPtr
InterlockedIncrement
GetACP
GetModuleFileNameW
GetTickCount
lstrcpyW
GetDateFormatW
GetSystemTimeAsFileTime
FormatMessageW
OutputDebugStringW
QueryPerformanceCounter
GetComputerNameW
GetLastError
SetLastError
InitializeCriticalSection
CreateFileW
RemoveDirectoryA
lstrcmpiW
lstrlenW
GetEnvironmentStringsW
GlobalFree
GlobalUnlock
GlobalAlloc
CloseHandle
OutputDebugStringA
GetStartupInfoA
GetSystemDefaultLangID

msvcrt

wcscat
wcsrchr
memmove
wcscmp
?terminate@@YAXXZ
_except_handler3
wcscpy
wcsstr
??1type_info@@UAE@XZ
_initterm
_purecall
_wcsicmp
wcschr
_wcsupr
wcslen
_onexit
__RTDynamicCast
_adjust_fdiv
vswprintf
free
malloc
wcstoul
??3@YAXPAX@Z
__dllonexit
mbstowcs
??2@YAPAXI@Z

advapi32

RegQueryValueExW
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW
RegCloseKey
RegSetValueExW
RegOpenKeyExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44ee262583a2e03b9ccd0be78ac8cf9c

Headers

File Characteristics

Imports

certcli

user32

kernel32

msvcrt

advapi32

comctl32

Sections

.text Size: 77KB - Virtual size: 76KB

.data Size: 52KB - Virtual size: 52KB

.data Size: 64KB - Virtual size: 6.2MB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 77KB - Virtual size: 76KB

.data
Size: 52KB - Virtual size: 52KB

.data
Size: 64KB - Virtual size: 6.2MB

.rsrc
Size: 4KB - Virtual size: 3KB