9a4398f00e94fb829dbfc840d8bdc5bf11afcc95a8e3890597b549b1677c1ea4

Sharing

Copy URL Twitter E-mail

General

Target

9a4398f00e94fb829dbfc840d8bdc5bf11afcc95a8e3890597b549b1677c1ea4
Size

199KB
MD5

6206a51cf1de21f8dec755c858d09012
SHA1

76f0400afcd5e944648a5067cf958be2f8f2dbb5
SHA256

9a4398f00e94fb829dbfc840d8bdc5bf11afcc95a8e3890597b549b1677c1ea4
SHA512

a502c4a2678c09d4d04c911a385de09149a70a4019c827b30fadd67bc80b9f39edd060a6fae5e4619f3c7c0e8320c6ea946eaf6f2c0f221d271ec45d3cfaebb9
SSDEEP

6144:2Q9HxlsbsDgouiKFa5Nv02fPjLDOquNWb/vlt:zTMsW69ZP/aqf/vf

Score

N/A

Malware Config

Signatures

Files

9a4398f00e94fb829dbfc840d8bdc5bf11afcc95a8e3890597b549b1677c1ea4
.exe windows x86

44ee262583a2e03b9ccd0be78ac8cf9c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAGetCertTypeProperty
CAGetCertTypeExtensions
CAUpdateCertType
CASetCertTypeKeySpec
CARemoveCACertificateType
CASetCertTypeExtension
CAFindByName
CAFreeCertTypeProperty
CASetCertTypeProperty
CACertTypeSetSecurity
CAGetCertTypeKeySpec
CAGetCertTypeFlags
CACreateCertType
CAGetCAProperty
CAFreeCertTypeExtensions
CAAddCACertificateType
CAEnumCertTypesForCA
CAGetCertTypePropertyEx
CACloseCA
CASetCertTypeFlags
CAUpdateCA
CAFindCertTypeByName
CACertTypeGetSecurity
CACloseCertType
CAFreeCAProperty
CAEnumNextCertType
CAEnumCertTypes

user32

SendMessageW
DialogBoxParamW
GetDlgItemTextA
SetFocus
wsprintfW
MessageBoxW
InsertMenuItemW
EnableWindow
LoadCursorW
ReleaseDC
EndDialog
SystemParametersInfoW
SendDlgItemMessageW
GetWindowLongW
LoadStringW
LoadIconW
SetDlgItemTextW
LoadBitmapW
SetWindowTextW
SetWindowLongW
GetParent
WinHelpW
GetDC
RegisterClipboardFormatW
SetCursor
GetDlgItem
PostMessageW
LoadImageW

kernel32

GlobalLock
GetCurrentProcess
FileTimeToSystemTime
FileTimeToLocalFileTime
DeleteCriticalSection
LoadLibraryW
GetModuleHandleA
LocalReAlloc
SetUnhandledExceptionFilter
WideCharToMultiByte
InterlockedDecrement
LocalFree
GetSystemWindowsDirectoryW
IsBadReadPtr
InterlockedIncrement
GetACP
GetModuleFileNameW
GetTickCount
lstrcpyW
GetDateFormatW
GetSystemTimeAsFileTime
FormatMessageW
OutputDebugStringW
QueryPerformanceCounter
GetComputerNameW
GetLastError
SetLastError
InitializeCriticalSection
CreateFileW
RemoveDirectoryA
lstrcmpiW
lstrlenW
GetEnvironmentStringsW
GlobalFree
GlobalUnlock
GlobalAlloc
CloseHandle
OutputDebugStringA
GetStartupInfoA
GetSystemDefaultLangID

msvcrt

wcscat
wcsrchr
memmove
wcscmp
?terminate@@YAXXZ
_except_handler3
wcscpy
wcsstr
??1type_info@@UAE@XZ
_initterm
_purecall
_wcsicmp
wcschr
_wcsupr
wcslen
_onexit
__RTDynamicCast
_adjust_fdiv
vswprintf
free
malloc
wcstoul
??3@YAXPAX@Z
__dllonexit
mbstowcs
??2@YAPAXI@Z

advapi32

RegQueryValueExW
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW
RegCloseKey
RegSetValueExW
RegOpenKeyExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44ee262583a2e03b9ccd0be78ac8cf9c

Headers

File Characteristics

Imports

certcli

user32

kernel32

msvcrt

advapi32

comctl32

Sections

.text Size: 77KB - Virtual size: 76KB

.data Size: 52KB - Virtual size: 52KB

.data Size: 64KB - Virtual size: 6.2MB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 77KB - Virtual size: 76KB

.data
Size: 52KB - Virtual size: 52KB

.data
Size: 64KB - Virtual size: 6.2MB

.rsrc
Size: 4KB - Virtual size: 3KB