406aabda7081f4b5c8391e3bb5893b383b02a2cfc26041241c8b9c9df4d79146

Sharing

Copy URL

Twitter E-mail

General

Target

406aabda7081f4b5c8391e3bb5893b383b02a2cfc26041241c8b9c9df4d79146
Size

201KB
MD5

69bc26fea4959d00eefb7cf9087d96ef
SHA1

730029a544511dd079ecbcab7e6a89629641feb1
SHA256

406aabda7081f4b5c8391e3bb5893b383b02a2cfc26041241c8b9c9df4d79146
SHA512

2bae6cae7d71d0da4a32c8e893d60ab8526a3d16a868b876510a1274378d3eebe992c56f0e59188c7779af480a09f7597e503507baa914208a988823b744162c
SSDEEP

6144:fhci7bwpfm0ymYfuxp4UolNhb+gKDhF6H:ZhwJXpGhb+g4hE

Score

N/A

Malware Config

Signatures

Files

406aabda7081f4b5c8391e3bb5893b383b02a2cfc26041241c8b9c9df4d79146
.exe windows x86

d0e180b511f1850f36a001a241d1a311

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAGetCertTypeProperty
CACloseCertType
CAUpdateCA
CAFreeCertTypeExtensions
CAGetCertTypeFlags
CAGetCertTypeKeySpec
CASetCertTypeFlags
CAFindByName
CAGetCertTypeExtensions
CACertTypeSetSecurity
CAGetCAProperty
CAEnumCertTypesForCA
CARemoveCACertificateType
CAAddCACertificateType
CAEnumCertTypes
CASetCertTypeKeySpec
CASetCertTypeExtension
CAEnumNextCertType
CAUpdateCertType
CAGetCertTypePropertyEx
CAFreeCertTypeProperty
CAFreeCAProperty
CASetCertTypeProperty
CACreateCertType
CACertTypeGetSecurity
CACloseCA
CAFindCertTypeByName

kernel32

CloseHandle
WideCharToMultiByte
LocalReAlloc
InterlockedIncrement
FormatMessageW
lstrlenW
lstrcmpiW
OutputDebugStringA
InitializeCriticalSection
GetModuleHandleA
GetComputerNameW
LoadLibraryW
InterlockedDecrement
OutputDebugStringW
GetACP
IsBadReadPtr
lstrcpyW
GetTickCount
GetLastError
FileTimeToLocalFileTime
GetSystemWindowsDirectoryW
GetEnvironmentStringsW
GetDateFormatW
GetModuleFileNameW
GetSystemDefaultLangID
FileTimeToSystemTime
DeleteCriticalSection
RemoveDirectoryA
LocalFree
SetUnhandledExceptionFilter
SetLastError
CreateFileW
GlobalLock
QueryPerformanceCounter
GetStartupInfoA
GlobalAlloc
GlobalUnlock
GetCurrentProcess
GlobalFree
GetSystemTimeAsFileTime

user32

LoadBitmapW
GetDlgItemTextA
wsprintfW
SetWindowTextW
GetWindowLongW
GetDC
LoadCursorW
EnableWindow
WinHelpW
PostMessageW
SetCursor
LoadStringW
SetFocus
EndDialog
InsertMenuItemW
RegisterClipboardFormatW
SendMessageW
SetDlgItemTextW
ReleaseDC
SetWindowLongW
SystemParametersInfoW
MessageBoxW
GetDlgItem
SendDlgItemMessageW
LoadIconW
DialogBoxParamW
LoadImageW
GetParent

msvcrt

wcscpy
__dllonexit
wcstoul
_except_handler3
_wcsupr
malloc
_wcsicmp
?terminate@@YAXXZ
mbstowcs
wcscmp
wcscat
memmove
vswprintf
??3@YAXPAX@Z
__RTDynamicCast
??2@YAPAXI@Z
wcsrchr
_purecall
wcschr
_adjust_fdiv
_onexit
_initterm
free
??1type_info@@UAE@XZ
wcsstr
wcslen

advapi32

RegCloseKey
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW
RegOpenKeyExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d0e180b511f1850f36a001a241d1a311

Headers

File Characteristics

Imports

certcli

kernel32

user32

msvcrt

advapi32

comctl32

Sections

.text Size: 116KB - Virtual size: 115KB

.data Size: 49KB - Virtual size: 49KB

.data Size: 31KB - Virtual size: 6.2MB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 116KB - Virtual size: 115KB

.data
Size: 49KB - Virtual size: 49KB

.data
Size: 31KB - Virtual size: 6.2MB

.rsrc
Size: 3KB - Virtual size: 2KB