c14a86ae98f2c8bdb20e36dd02c8e80e3ca5c871c42b66dfb200cff2cf03081b

Sharing

Copy URL Twitter E-mail

General

Target

c14a86ae98f2c8bdb20e36dd02c8e80e3ca5c871c42b66dfb200cff2cf03081b
Size

236KB
MD5

117024e7b8c3ed02765bdb2593232eb0
SHA1

25434774ffd9b24f02d2ca24d4ff131628722b50
SHA256

c14a86ae98f2c8bdb20e36dd02c8e80e3ca5c871c42b66dfb200cff2cf03081b
SHA512

20c4ae9e87e3ebde294b784547f58907b74ef3b639912605479c02686a7056b1ab5b414624e1094585aa2c83ae08d2291af06afb38a33720aa3d313df641aae8
SSDEEP

6144:1foHCaygPmNPqkAhDCgR/xw5/pGWz/c/wTPAdE+kE:1WCU+JFAhWx1p/2H

Score

N/A

Malware Config

Signatures

Files

c14a86ae98f2c8bdb20e36dd02c8e80e3ca5c871c42b66dfb200cff2cf03081b
.exe windows x86

dc1b5d3d2f5914fcdcc182e0789360d1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLogicalDriveStringsW
SetMessageWaitingIndicator
GetProcessAffinityMask
SetThreadIdealProcessor
CommConfigDialogA
GetVolumeInformationW
WritePrivateProfileSectionA
SetFilePointerEx
GlobalMemoryStatus
GetVersionExW
GetSystemTimeAdjustment
GetVersionExA
GetTempPathA
GetDevicePowerState
EnumUILanguagesW
GlobalAlloc
CreateMailslotA
FlushFileBuffers
QueueUserAPC
GetPrivateProfileStructW
MoveFileExW
DosDateTimeToFileTime
RtlZeroMemory
GetTempFileNameW

advapi32

LookupAccountNameW
CryptAcquireContextA
CredEnumerateW
CryptGenKey
RegQueryValueExA
CredReadW
RegQueryInfoKeyW
RegCloseKey
CredWriteW
CryptReleaseContext
RegOpenKeyExA
CryptExportKey
GetLengthSid
LogonUserW
CryptDestroyKey
RegQueryValueExW
RegOpenKeyExW
GetUserNameW
CredFree
RegEnumKeyExW

crypt32

CryptExportPublicKeyInfo
CertCreateCertificateContext
CryptEncodeObject

user32

SetWindowLongW
ReleaseDC
MoveWindow
SendDlgItemMessageW
SetWindowPos
GetDC
VkKeyScanExW
KillTimer
PostMessageA
GetDlgItem
GetWindowRect
ToUnicode
LoadIconW
SendMessageW
LoadCursorW
ShowWindow
PeekMessageA
DdeConnect
GetDlgItemTextW
UnregisterClassA
SetFocus
SetDlgItemTextW
GetActiveWindow
SetPropW
EnableWindow
SetCursor
SetTimer
EndDialog
SystemParametersInfoW
MapWindowPoints
CallWindowProcW
IsWindow
GetWindowPlacement
GetPropW
DdeQueryConvInfo
GetInputDesktop
GetParent
AllowSetForegroundWindow
PostMessageW
SetMenuItemInfoW
GetSubMenu
DdeImpersonateClient

secur32

LsaCallAuthenticationPackage
LsaConnectUntrusted
LsaDeregisterLogonProcess
LsaFreeReturnBuffer
LsaLookupAuthenticationPackage

shlwapi

PathGetDriveNumberW

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dc1b5d3d2f5914fcdcc182e0789360d1

Headers

File Characteristics

Imports

kernel32

advapi32

crypt32

user32

secur32

shlwapi

Sections

.text Size: 144KB - Virtual size: 143KB

.data Size: 19KB - Virtual size: 98KB

.rdata Size: 3KB - Virtual size: 2KB

.rsrc Size: 69KB - Virtual size: 69KB

.text
Size: 144KB - Virtual size: 143KB

.data
Size: 19KB - Virtual size: 98KB

.rdata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 69KB - Virtual size: 69KB