2e84ae537d6329f9a273b3a8045352e27cd3505efcef09021caf0dfe97f5ea8a

Sharing

Copy URL Twitter E-mail

General

Target

2e84ae537d6329f9a273b3a8045352e27cd3505efcef09021caf0dfe97f5ea8a
Size

201KB
MD5

43f8100c93a47c51f9efd2c22460c592
SHA1

e8ce9d3f3f7a40e1b716bbf7a64de891ae6e4be7
SHA256

2e84ae537d6329f9a273b3a8045352e27cd3505efcef09021caf0dfe97f5ea8a
SHA512

2f63cf58d89344977409b84de78167bce583c73458cf23d8e3c7279bc22d853d3d76c33b282565feda5cbf1be7e52eea76dc91746e78df45a41611fd7b2f58af
SSDEEP

3072:fhclzodLPk4ldwjBjbfZQfxOlw1YYfuD8gOnVOV4+voLhNi2yM+gKD2gHF8E1:fhci7bwpfm0ymYfuxp4UolNhb+gKDhF9

Score

N/A

Malware Config

Signatures

Files

2e84ae537d6329f9a273b3a8045352e27cd3505efcef09021caf0dfe97f5ea8a
.exe windows x86

d0e180b511f1850f36a001a241d1a311

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAGetCertTypeProperty
CACloseCertType
CAUpdateCA
CAFreeCertTypeExtensions
CAGetCertTypeFlags
CAGetCertTypeKeySpec
CASetCertTypeFlags
CAFindByName
CAGetCertTypeExtensions
CACertTypeSetSecurity
CAGetCAProperty
CAEnumCertTypesForCA
CARemoveCACertificateType
CAAddCACertificateType
CAEnumCertTypes
CASetCertTypeKeySpec
CASetCertTypeExtension
CAEnumNextCertType
CAUpdateCertType
CAGetCertTypePropertyEx
CAFreeCertTypeProperty
CAFreeCAProperty
CASetCertTypeProperty
CACreateCertType
CACertTypeGetSecurity
CACloseCA
CAFindCertTypeByName

kernel32

CloseHandle
WideCharToMultiByte
LocalReAlloc
InterlockedIncrement
FormatMessageW
lstrlenW
lstrcmpiW
OutputDebugStringA
InitializeCriticalSection
GetModuleHandleA
GetComputerNameW
LoadLibraryW
InterlockedDecrement
OutputDebugStringW
GetACP
IsBadReadPtr
lstrcpyW
GetTickCount
GetLastError
FileTimeToLocalFileTime
GetSystemWindowsDirectoryW
GetEnvironmentStringsW
GetDateFormatW
GetModuleFileNameW
GetSystemDefaultLangID
FileTimeToSystemTime
DeleteCriticalSection
RemoveDirectoryA
LocalFree
SetUnhandledExceptionFilter
SetLastError
CreateFileW
GlobalLock
QueryPerformanceCounter
GetStartupInfoA
GlobalAlloc
GlobalUnlock
GetCurrentProcess
GlobalFree
GetSystemTimeAsFileTime

user32

LoadBitmapW
GetDlgItemTextA
wsprintfW
SetWindowTextW
GetWindowLongW
GetDC
LoadCursorW
EnableWindow
WinHelpW
PostMessageW
SetCursor
LoadStringW
SetFocus
EndDialog
InsertMenuItemW
RegisterClipboardFormatW
SendMessageW
SetDlgItemTextW
ReleaseDC
SetWindowLongW
SystemParametersInfoW
MessageBoxW
GetDlgItem
SendDlgItemMessageW
LoadIconW
DialogBoxParamW
LoadImageW
GetParent

msvcrt

wcscpy
__dllonexit
wcstoul
_except_handler3
_wcsupr
malloc
_wcsicmp
?terminate@@YAXXZ
mbstowcs
wcscmp
wcscat
memmove
vswprintf
??3@YAXPAX@Z
__RTDynamicCast
??2@YAPAXI@Z
wcsrchr
_purecall
wcschr
_adjust_fdiv
_onexit
_initterm
free
??1type_info@@UAE@XZ
wcsstr
wcslen

advapi32

RegCloseKey
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW
RegOpenKeyExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d0e180b511f1850f36a001a241d1a311

Headers

File Characteristics

Imports

certcli

kernel32

user32

msvcrt

advapi32

comctl32

Sections

.text Size: 116KB - Virtual size: 115KB

.data Size: 49KB - Virtual size: 49KB

.data Size: 31KB - Virtual size: 6.2MB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 116KB - Virtual size: 115KB

.data
Size: 49KB - Virtual size: 49KB

.data
Size: 31KB - Virtual size: 6.2MB

.rsrc
Size: 3KB - Virtual size: 2KB