f903a1f86dbe45bf00af6c36795c69db30aa33769788d8bb903ab6b501a3df4a

Sharing

Copy URL Twitter E-mail

General

Target

f903a1f86dbe45bf00af6c36795c69db30aa33769788d8bb903ab6b501a3df4a
Size

198KB
MD5

6a753b19a97ffa60e314580e9f84203b
SHA1

0eb1b3a938d2a20434a3fae696461187dcb7fc89
SHA256

f903a1f86dbe45bf00af6c36795c69db30aa33769788d8bb903ab6b501a3df4a
SHA512

e0ce43d383d2a75d97898e62212a21852c65570bbc70cb6bc371db3068e862a02b0748b5a03feaa70baf121ca00dc4027cfdf7d38cfee18cf79a1692e36c0832
SSDEEP

6144:jlVFIltGYXSjqArmv+vBgJsPjGkW6FPtpVS/FvFtGwun:OGYijqArBBgePpTovhun

Score

N/A

Malware Config

Signatures

Files

f903a1f86dbe45bf00af6c36795c69db30aa33769788d8bb903ab6b501a3df4a
.exe windows x86

04cf6cd5f21c6bdfcb64a111c4c05dff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
GlobalUnlock
GetComputerNameW
OutputDebugStringA
GetTickCount
CreateFileW
OutputDebugStringW
GetCurrentProcess
GetSystemTimeAsFileTime
GlobalAlloc
InterlockedIncrement
LocalReAlloc
GetDateFormatW
FileTimeToLocalFileTime
GetCurrentThread
GetCPInfo
GetModuleFileNameW
LocalFree
InitializeCriticalSection
GlobalFree
GlobalLock
lstrlenW
GetLastError
FormatMessageW
GetSystemWindowsDirectoryW
lstrcpyW
GetStartupInfoA
QueryPerformanceCounter
GetModuleHandleA
lstrcmpiW
GetSystemDefaultLangID
GetProcAddress
SetLastError
InterlockedDecrement
GetEnvironmentStringsW
CloseHandle
LoadLibraryW
FileTimeToSystemTime
DeleteCriticalSection
IsBadReadPtr
SetUnhandledExceptionFilter

advapi32

RegQueryValueExW
RegEnumKeyExW
RegDeleteKeyW
RegCloseKey
RegSetValueExW
RegDeleteValueW
RegOpenKeyExW
RegCreateKeyExW

msvcrt

wcscmp
free
wcslen
vswprintf
__dllonexit
_onexit
_wcsicmp
wcsrchr
wcscpy
memmove
??2@YAPAXI@Z
mbstowcs
_initterm
_except_handler3
_wcsupr
wcsstr
malloc
__RTDynamicCast
?terminate@@YAXXZ
??3@YAXPAX@Z
wcschr
??1type_info@@UAE@XZ
wcscat
wcstoul
_adjust_fdiv

certcli

CAEnumNextCertType
CAGetCertTypePropertyEx
CAFindCertTypeByName
CACertTypeSetSecurity
CAFreeCertTypeExtensions
CAUpdateCA
CACreateCertType
CAFreeCAProperty
CAGetCertTypeKeySpec
CACertTypeGetSecurity
CAFreeCertTypeProperty
CAFindByName
CAEnumCertTypesForCA
CASetCertTypeProperty
CASetCertTypeKeySpec
CASetCertTypeFlags
CAGetCertTypeProperty
CAEnumCertTypes
CASetCertTypeExtension
CARemoveCACertificateType
CACloseCertType
CAAddCACertificateType
CAGetCAProperty
CACloseCA
CAGetCertTypeFlags
CAUpdateCertType
CAGetCertTypeExtensions

user32

EndDialog
LoadIconW
GetDC
LoadStringW
ReleaseDC
MessageBoxW
SetWindowTextW
SendMessageW
LoadBitmapW
LoadImageW
GetParent
SystemParametersInfoW
InsertMenuItemW
SetCursor
SetWindowLongW
LoadCursorW
PostMessageW
WinHelpW
SendDlgItemMessageW
GetDlgItem
GetWindowLongW
EnableWindow
wsprintfW
SetDlgItemTextW
DialogBoxParamW
RegisterClipboardFormatW
SetFocus
GetDlgItemTextA

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

04cf6cd5f21c6bdfcb64a111c4c05dff

Headers

File Characteristics

Imports

kernel32

advapi32

msvcrt

certcli

user32

comctl32

Sections

.text Size: 78KB - Virtual size: 77KB

.data Size: 70KB - Virtual size: 70KB

.data Size: 46KB - Virtual size: 6.2MB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 78KB - Virtual size: 77KB

.data
Size: 70KB - Virtual size: 70KB

.data
Size: 46KB - Virtual size: 6.2MB

.rsrc
Size: 2KB - Virtual size: 1KB