144d9eb291a7c81dc92c736542942e4745f70673c53e61b87dd76af6fefb5d7f

Sharing

Copy URL Twitter E-mail

General

Target

144d9eb291a7c81dc92c736542942e4745f70673c53e61b87dd76af6fefb5d7f
Size

197KB
MD5

6de4b0a8cfffc943978b4d9f6b56c8a8
SHA1

aa7587c84af02f5d3d198f8fa7ef072f40db3835
SHA256

144d9eb291a7c81dc92c736542942e4745f70673c53e61b87dd76af6fefb5d7f
SHA512

9843dd60360f4299e1d1ac407eb1ac7dd0f6c20cd62f1bb6f11d455eeec8c2b51ab9fc4e9e62beee46e669669cc31516118d64295120e72bd0c5625b36f82fab
SSDEEP

6144:Uxhw6NI1WGHMABSKCjJJ19OhZefb7B8RAWTu2X:Uxhw6WSj/19Ohc58xu2X

Score

N/A

Malware Config

Signatures

Files

144d9eb291a7c81dc92c736542942e4745f70673c53e61b87dd76af6fefb5d7f
.exe windows x86

523f0ce3191b0922ce0ab9b035f519a5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcsrchr
wcschr
_initterm
wcstoul
_wcsicmp
wcsstr
vswprintf
_wcsupr
??2@YAPAXI@Z
malloc
_except_handler3
memmove
__RTDynamicCast
??3@YAXPAX@Z
mbstowcs
?terminate@@YAXXZ
wcscat
free
__dllonexit
wcscpy
wcslen
??1type_info@@UAE@XZ
_onexit
wcscmp
_adjust_fdiv

kernel32

GetSystemWindowsDirectoryW
OutputDebugStringW
GetComputerNameW
GlobalAlloc
GetSystemTimeAsFileTime
GetModuleHandleA
FileTimeToLocalFileTime
GetEnvironmentStringsW
SetUnhandledExceptionFilter
CreateFileW
GetCurrentThread
GetTickCount
WideCharToMultiByte
LocalReAlloc
LocalFree
GetCurrentProcess
GetDateFormatW
GetModuleFileNameW
GlobalFree
GetStartupInfoA
GlobalUnlock
FileTimeToSystemTime
lstrcmpiW
SetLastError
LoadLibraryW
FormatMessageW
CloseHandle
DeleteCriticalSection
QueryPerformanceCounter
OutputDebugStringA
GetProcAddress
InitializeCriticalSection
GetLastError
lstrcpyW
GlobalLock
IsBadReadPtr
GetSystemDefaultLangID
InterlockedIncrement
lstrlenW
GetCPInfo
InterlockedDecrement

user32

LoadStringW
SetCursor
SetWindowTextW
SendDlgItemMessageW
GetParent
InsertMenuItemW
EnableWindow
LoadImageW
GetDlgItemTextA
SendMessageW
EndDialog
SystemParametersInfoW
GetWindowLongW
DialogBoxParamW
RegisterClipboardFormatW
LoadIconW
ReleaseDC
WinHelpW
GetDlgItem
GetDC
SetFocus
PostMessageW
MessageBoxW
LoadCursorW
SetDlgItemTextW
wsprintfW
LoadBitmapW
SetWindowLongW

advapi32

RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegEnumKeyExW
RegQueryValueExW

certcli

CACloseCA
CARemoveCACertificateType
CAFindByName
CACertTypeGetSecurity
CAUpdateCA
CAGetCertTypeKeySpec
CAFindCertTypeByName
CASetCertTypeFlags
CAEnumNextCertType
CAFreeCAProperty
CAEnumCertTypes
CASetCertTypeProperty
CAFreeCertTypeProperty
CAEnumCertTypesForCA
CAFreeCertTypeExtensions
CACloseCertType
CASetCertTypeKeySpec
CAGetCertTypePropertyEx
CACreateCertType
CAUpdateCertType
CAGetCertTypeProperty
CAGetCertTypeFlags
CAAddCACertificateType
CASetCertTypeExtension
CACertTypeSetSecurity
CAGetCAProperty
CAGetCertTypeExtensions

Sections

.text
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 860B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

523f0ce3191b0922ce0ab9b035f519a5

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

advapi32

certcli

Sections

.text Size: 78KB - Virtual size: 77KB

.data Size: 70KB - Virtual size: 69KB

.data Size: 46KB - Virtual size: 6.2MB

.rsrc Size: 1024B - Virtual size: 860B

.text
Size: 78KB - Virtual size: 77KB

.data
Size: 70KB - Virtual size: 69KB

.data
Size: 46KB - Virtual size: 6.2MB

.rsrc
Size: 1024B - Virtual size: 860B