021eca26343364c219b9ed53d25c0135103bdc1d27633978770d5bc213d530de

Sharing

Copy URL Twitter E-mail

General

Target

021eca26343364c219b9ed53d25c0135103bdc1d27633978770d5bc213d530de
Size

197KB
MD5

626db362640fdbc7837b7418e3d0c8c4
SHA1

b96a824cd5c2901d695611d1f4bf350d083893b9
SHA256

021eca26343364c219b9ed53d25c0135103bdc1d27633978770d5bc213d530de
SHA512

b887fc00ff979755ebf8af3cfe4984fbc977645e1b3137ababb3075a837c5af4e246f19d8c6fb344bd0f9dbcbdf0ecd45317e63318f912f3f95fba66cece02bb
SSDEEP

6144:fFxkR2kKM8wLBrcgJBr9i8ydGWFtGbuiSCIIbaZgq+Gek:48wVVaYmkI6nm

Score

N/A

Malware Config

Signatures

Files

021eca26343364c219b9ed53d25c0135103bdc1d27633978770d5bc213d530de
.exe windows x86

2e37a1c0919a461263bd306a4dcc08d4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAEnumNextCertType
CAFreeCertTypeProperty
CASetCertTypeProperty
CAAddCACertificateType
CASetCertTypeKeySpec
CARemoveCACertificateType
CAEnumCertTypesForCA
CAGetCertTypeProperty
CACloseCA
CAGetCertTypeKeySpec
CAUpdateCertType
CAUpdateCA
CAGetCertTypePropertyEx
CAGetCAProperty
CAFindByName
CASetCertTypeFlags
CAFindCertTypeByName
CACreateCertType
CACertTypeSetSecurity
CAGetCertTypeExtensions
CACloseCertType
CACertTypeGetSecurity
CAEnumCertTypes
CAGetCertTypeFlags
CAFreeCAProperty
CASetCertTypeExtension
CAFreeCertTypeExtensions

msvcrt

_wcsupr
__RTDynamicCast
wcscpy
_except_handler3
wcstoul
_wcsicmp
wcscat
wcscmp
wcsrchr
vswprintf
wcschr
wcsstr
wcslen
??2@YAPAXI@Z
free
_adjust_fdiv
??3@YAXPAX@Z
?terminate@@YAXXZ
??1type_info@@UAE@XZ
_purecall
__dllonexit
malloc
_initterm
_onexit
mbstowcs
memmove

user32

GetDC
EnableWindow
PostMessageW
SendMessageW
LoadBitmapW
LoadImageW
SetCursor
InsertMenuItemW
GetDlgItem
GetParent
SetDlgItemTextW
LoadCursorW
LoadStringW
SetFocus
SetWindowLongW
GetDlgItemTextA
SetWindowTextW
SystemParametersInfoW
LoadIconW
EndDialog
RegisterClipboardFormatW
wsprintfW
WinHelpW
ReleaseDC
SendDlgItemMessageW
MessageBoxW
DialogBoxParamW
GetWindowLongW

kernel32

LoadLibraryW
GetACP
OutputDebugStringA
GetStartupInfoA
OutputDebugStringW
InterlockedIncrement
InterlockedDecrement
lstrlenW
GetSystemTimeAsFileTime
lstrcpyW
GetSystemWindowsDirectoryW
SetLastError
GlobalLock
GetModuleHandleA
RemoveDirectoryA
LocalReAlloc
GetLastError
lstrcmpiW
InitializeCriticalSection
FileTimeToLocalFileTime
GetEnvironmentStringsW
CloseHandle
IsBadReadPtr
FormatMessageW
GetDateFormatW
GetSystemDefaultLangID
GlobalUnlock
GlobalAlloc
CreateFileW
GlobalFree
LocalFree
QueryPerformanceCounter
DeleteCriticalSection
WideCharToMultiByte
GetComputerNameW
GetModuleFileNameW
GetCurrentProcess
GetTickCount
SetUnhandledExceptionFilter
FileTimeToSystemTime

advapi32

RegEnumKeyExW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteValueW
RegCloseKey
RegDeleteKeyW
RegSetValueExW
RegQueryValueExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e37a1c0919a461263bd306a4dcc08d4

Headers

File Characteristics

Imports

certcli

msvcrt

user32

kernel32

advapi32

comctl32

Sections

.text Size: 113KB - Virtual size: 113KB

.data Size: 52KB - Virtual size: 52KB

.data Size: 27KB - Virtual size: 6.2MB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 113KB - Virtual size: 113KB

.data
Size: 52KB - Virtual size: 52KB

.data
Size: 27KB - Virtual size: 6.2MB

.rsrc
Size: 1KB - Virtual size: 1KB