e72c49811a9ba9e11bc69ec8f7464cdcce52844039533c398a713e110c6cea27

Sharing

Copy URL

Twitter E-mail

General

Target

e72c49811a9ba9e11bc69ec8f7464cdcce52844039533c398a713e110c6cea27
Size

200KB
MD5

6754c19fc9150372f9515c620efe5209
SHA1

b297de65cf75749cd44f4654df863c5d49f6dbc5
SHA256

e72c49811a9ba9e11bc69ec8f7464cdcce52844039533c398a713e110c6cea27
SHA512

b4b73cf4504784974010d3c32f48d877fe0ac6495b2fc03b6807f05c76d7d6d4f2c0daa3cf9143b63b079314629f989b1c4cf31311f608e73fb89e54bbda2066
SSDEEP

6144:5Imx6PegDc+K9i3KrfGoPLm+xnhiNv+xx:57x4ycKaoVxn0Cx

Score

N/A

Malware Config

Signatures

Files

e72c49811a9ba9e11bc69ec8f7464cdcce52844039533c398a713e110c6cea27
.exe windows x86

600d1e2fd44337b53dc42f132ac8cf6d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegDeleteValueW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyExW

kernel32

GetSystemDefaultLangID
GlobalFree
InterlockedIncrement
FileTimeToLocalFileTime
LocalReAlloc
FormatMessageW
LoadLibraryW
GetComputerNameW
OutputDebugStringA
GetModuleHandleA
GlobalUnlock
GetEnvironmentStringsW
GetACP
GlobalLock
InitializeCriticalSection
GetSystemWindowsDirectoryW
GetDateFormatW
FileTimeToSystemTime
SetUnhandledExceptionFilter
GetTickCount
LocalFree
GetStartupInfoA
QueryPerformanceCounter
lstrlenW
lstrcpyW
GetCurrentProcess
lstrcmpiW
InterlockedDecrement
CreateFileW
SetLastError
WideCharToMultiByte
CloseHandle
GlobalAlloc
IsBadReadPtr
DeleteCriticalSection
RemoveDirectoryA
OutputDebugStringW
GetSystemTimeAsFileTime
GetLastError
GetModuleFileNameW

msvcrt

memmove
wcsrchr
wcsstr
__RTDynamicCast
_wcsupr
malloc
??1type_info@@UAE@XZ
_onexit
wcslen
vswprintf
??2@YAPAXI@Z
free
??3@YAXPAX@Z
__dllonexit
_purecall
mbstowcs
wcscmp
_wcsicmp
?terminate@@YAXXZ
wcscpy
wcstoul
_initterm
wcschr
_adjust_fdiv
_except_handler3
wcscat

certcli

CACloseCertType
CACloseCA
CASetCertTypeExtension
CASetCertTypeKeySpec
CACertTypeSetSecurity
CAGetCertTypeFlags
CACreateCertType
CAUpdateCertType
CAFreeCertTypeProperty
CASetCertTypeFlags
CAGetCertTypePropertyEx
CAEnumNextCertType
CAFindByName
CAEnumCertTypes
CAFindCertTypeByName
CASetCertTypeProperty
CARemoveCACertificateType
CAGetCertTypeExtensions
CACertTypeGetSecurity
CAAddCACertificateType
CAGetCertTypeKeySpec
CAUpdateCA
CAGetCAProperty
CAGetCertTypeProperty
CAFreeCAProperty
CAEnumCertTypesForCA
CAFreeCertTypeExtensions

user32

LoadStringW
SendDlgItemMessageW
LoadIconW
LoadImageW
InsertMenuItemW
SystemParametersInfoW
DialogBoxParamW
GetDlgItem
SetDlgItemTextW
SetWindowTextW
EnableWindow
wsprintfW
PostMessageW
SetCursor
EndDialog
GetDlgItemTextA
GetParent
GetWindowLongW
LoadCursorW
WinHelpW
MessageBoxW
RegisterClipboardFormatW
LoadBitmapW
GetDC
SetWindowLongW
ReleaseDC
SendMessageW
SetFocus

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

600d1e2fd44337b53dc42f132ac8cf6d

Headers

File Characteristics

Imports

advapi32

kernel32

msvcrt

certcli

user32

comctl32

Sections

.text Size: 116KB - Virtual size: 115KB

.data Size: 52KB - Virtual size: 52KB

.data Size: 27KB - Virtual size: 6.2MB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 116KB - Virtual size: 115KB

.data
Size: 52KB - Virtual size: 52KB

.data
Size: 27KB - Virtual size: 6.2MB

.rsrc
Size: 2KB - Virtual size: 1KB