92513793ecf25a86f39e7077a8c2ee3d7a52effd32ecdb27114c82e975a35746

Sharing

Copy URL

Twitter E-mail

General

Target

92513793ecf25a86f39e7077a8c2ee3d7a52effd32ecdb27114c82e975a35746
Size

195KB
MD5

91e5e14a8b4de111646f8b553c65d6a8
SHA1

0d93ae3441e301efe7b8f427f190489e8e88789b
SHA256

92513793ecf25a86f39e7077a8c2ee3d7a52effd32ecdb27114c82e975a35746
SHA512

6ad8cebda4fdf6165bbb5b727406cb58ee06f09da55eb0d49fdb560104e64758ed0812a7d0743d7ba2e8ad3504b763ba3ef378c82ef0e0155621cbaca7bd710a
SSDEEP

3072:V+GE0JFT6DZy9U7M13xX6SIUGVVU6VM8Zw+yj10yzXPsfAZwIC+idOrL2QpEM:V+GRFWDWUI13x3IUkNu8uZEfq/

Score

N/A

Malware Config

Signatures

Files

92513793ecf25a86f39e7077a8c2ee3d7a52effd32ecdb27114c82e975a35746
.exe windows x86

0218e30021a531537149c3a6a9ae037c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
FileTimeToSystemTime
GetDateFormatW
QueryPerformanceCounter
GetLastError
OutputDebugStringW
GetModuleFileNameW
GlobalUnlock
InitializeCriticalSection
LocalFree
GetCPInfo
FileTimeToLocalFileTime
LoadLibraryW
lstrcpyW
IsBadReadPtr
GetTickCount
CloseHandle
GetCurrentThread
CreateFileW
GlobalFree
GlobalAlloc
GetStartupInfoA
GetModuleHandleA
lstrlenW
InterlockedIncrement
WideCharToMultiByte
SetUnhandledExceptionFilter
LocalReAlloc
GetSystemDefaultLangID
InterlockedDecrement
GetProcAddress
DeleteCriticalSection
SetLastError
lstrcmpiW
FormatMessageW
GetEnvironmentStringsW
GetComputerNameW
OutputDebugStringA
GetSystemWindowsDirectoryW
GlobalLock
GetSystemTimeAsFileTime

msvcrt

_except_handler3
wcsstr
__RTDynamicCast
??1type_info@@UAE@XZ
__dllonexit
free
_wcsupr
memmove
??2@YAPAXI@Z
wcschr
wcsrchr
?terminate@@YAXXZ
wcslen
wcscpy
vswprintf
??3@YAXPAX@Z
_onexit
wcstoul
_initterm
malloc
_adjust_fdiv
wcscat
_wcsicmp
wcscmp
mbstowcs

user32

DialogBoxParamW
LoadIconW
ReleaseDC
GetWindowLongW
LoadStringW
wsprintfW
EndDialog
SystemParametersInfoW
SendDlgItemMessageW
EnableWindow
SetWindowTextW
SendMessageW
GetDC
GetDlgItem
LoadImageW
SetDlgItemTextW
SetFocus
PostMessageW
SetCursor
InsertMenuItemW
RegisterClipboardFormatW
LoadBitmapW
LoadCursorW
SetWindowLongW
MessageBoxW
GetParent
GetDlgItemTextA
WinHelpW

certcli

CAGetCertTypeFlags
CAGetCertTypePropertyEx
CAFindByName
CAFreeCAProperty
CAGetCertTypeProperty
CACertTypeGetSecurity
CASetCertTypeProperty
CAUpdateCA
CAGetCertTypeExtensions
CACertTypeSetSecurity
CASetCertTypeFlags
CAGetCertTypeKeySpec
CACloseCertType
CAGetCAProperty
CASetCertTypeKeySpec
CACloseCA
CAFreeCertTypeExtensions
CAEnumCertTypesForCA
CAAddCACertificateType
CAUpdateCertType
CASetCertTypeExtension
CAEnumNextCertType
CACreateCertType
CAFreeCertTypeProperty
CARemoveCACertificateType
CAFindCertTypeByName
CAEnumCertTypes

advapi32

RegQueryValueExW
RegDeleteValueW
RegEnumKeyExW
RegCreateKeyExW
RegCloseKey
RegSetValueExW
RegDeleteKeyW
RegOpenKeyExW

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0218e30021a531537149c3a6a9ae037c

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

certcli

advapi32

Sections

.text Size: 76KB - Virtual size: 75KB

.data Size: 70KB - Virtual size: 69KB

.data Size: 46KB - Virtual size: 6.2MB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 76KB - Virtual size: 75KB

.data
Size: 70KB - Virtual size: 69KB

.data
Size: 46KB - Virtual size: 6.2MB

.rsrc
Size: 1KB - Virtual size: 1KB