dafe28979ac4e525dac8e3f54b12dc3a40ad63ba35fc186efa982c909329152a

Sharing

Copy URL Twitter E-mail

General

Target

dafe28979ac4e525dac8e3f54b12dc3a40ad63ba35fc186efa982c909329152a
Size

199KB
MD5

6f73de856f74b97ec362b2f5ab2d3362
SHA1

021b89a0b352a7ba704fa18533ec09a972e3ff60
SHA256

dafe28979ac4e525dac8e3f54b12dc3a40ad63ba35fc186efa982c909329152a
SHA512

a9cf7af3bd26f40753679c724889f2089444a57913296ebae580bbf4684eed6593c739f81b03e0d0ea31f958c598860f30dc845a217db12af980c864459971a4
SSDEEP

6144:2Q9HxlsbsDgouiKFa5Nv02fPjLDOquNWb/vlE:zTMsW69ZP/aqf/vu

Score

N/A

Malware Config

Signatures

Files

dafe28979ac4e525dac8e3f54b12dc3a40ad63ba35fc186efa982c909329152a
.exe windows x86

44ee262583a2e03b9ccd0be78ac8cf9c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAGetCertTypeProperty
CAGetCertTypeExtensions
CAUpdateCertType
CASetCertTypeKeySpec
CARemoveCACertificateType
CASetCertTypeExtension
CAFindByName
CAFreeCertTypeProperty
CASetCertTypeProperty
CACertTypeSetSecurity
CAGetCertTypeKeySpec
CAGetCertTypeFlags
CACreateCertType
CAGetCAProperty
CAFreeCertTypeExtensions
CAAddCACertificateType
CAEnumCertTypesForCA
CAGetCertTypePropertyEx
CACloseCA
CASetCertTypeFlags
CAUpdateCA
CAFindCertTypeByName
CACertTypeGetSecurity
CACloseCertType
CAFreeCAProperty
CAEnumNextCertType
CAEnumCertTypes

user32

SendMessageW
DialogBoxParamW
GetDlgItemTextA
SetFocus
wsprintfW
MessageBoxW
InsertMenuItemW
EnableWindow
LoadCursorW
ReleaseDC
EndDialog
SystemParametersInfoW
SendDlgItemMessageW
GetWindowLongW
LoadStringW
LoadIconW
SetDlgItemTextW
LoadBitmapW
SetWindowTextW
SetWindowLongW
GetParent
WinHelpW
GetDC
RegisterClipboardFormatW
SetCursor
GetDlgItem
PostMessageW
LoadImageW

kernel32

GlobalLock
GetCurrentProcess
FileTimeToSystemTime
FileTimeToLocalFileTime
DeleteCriticalSection
LoadLibraryW
GetModuleHandleA
LocalReAlloc
SetUnhandledExceptionFilter
WideCharToMultiByte
InterlockedDecrement
LocalFree
GetSystemWindowsDirectoryW
IsBadReadPtr
InterlockedIncrement
GetACP
GetModuleFileNameW
GetTickCount
lstrcpyW
GetDateFormatW
GetSystemTimeAsFileTime
FormatMessageW
OutputDebugStringW
QueryPerformanceCounter
GetComputerNameW
GetLastError
SetLastError
InitializeCriticalSection
CreateFileW
RemoveDirectoryA
lstrcmpiW
lstrlenW
GetEnvironmentStringsW
GlobalFree
GlobalUnlock
GlobalAlloc
CloseHandle
OutputDebugStringA
GetStartupInfoA
GetSystemDefaultLangID

msvcrt

wcscat
wcsrchr
memmove
wcscmp
?terminate@@YAXXZ
_except_handler3
wcscpy
wcsstr
??1type_info@@UAE@XZ
_initterm
_purecall
_wcsicmp
wcschr
_wcsupr
wcslen
_onexit
__RTDynamicCast
_adjust_fdiv
vswprintf
free
malloc
wcstoul
??3@YAXPAX@Z
__dllonexit
mbstowcs
??2@YAPAXI@Z

advapi32

RegQueryValueExW
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW
RegCloseKey
RegSetValueExW
RegOpenKeyExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44ee262583a2e03b9ccd0be78ac8cf9c

Headers

File Characteristics

Imports

certcli

user32

kernel32

msvcrt

advapi32

comctl32

Sections

.text Size: 77KB - Virtual size: 76KB

.data Size: 52KB - Virtual size: 52KB

.data Size: 64KB - Virtual size: 6.2MB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 77KB - Virtual size: 76KB

.data
Size: 52KB - Virtual size: 52KB

.data
Size: 64KB - Virtual size: 6.2MB

.rsrc
Size: 4KB - Virtual size: 3KB