e8674b688c4474ec631e7985c44aa516777974037808611bbb087e3c9c709911

Sharing

Copy URL Twitter E-mail

General

Target

e8674b688c4474ec631e7985c44aa516777974037808611bbb087e3c9c709911
Size

201KB
MD5

772875feae296bf1969fa644a6271a8a
SHA1

add38ab844572474f144b84b0a5e06cbd5e4631a
SHA256

e8674b688c4474ec631e7985c44aa516777974037808611bbb087e3c9c709911
SHA512

5f08f6d6942dd9d53c1c1a9d1be8bc4831ee503f477ae9f820d9589d0efdc157f0f25b956f45bd4f075d3623152d74e99db25a83d8838039290c60f40c68309b
SSDEEP

6144:pd2+I+GTWiwghVIwRYqyOe7swmh0jzSjJJP:XprAWsbIw4mek

Score

N/A

Malware Config

Signatures

Files

e8674b688c4474ec631e7985c44aa516777974037808611bbb087e3c9c709911
.exe windows x86

dd8b7d6b572302f6d85d9cfe7fdcd4d7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyExW
RegSetValueExW
RegOpenKeyExW
RegDeleteValueW
RegQueryValueExW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey

certcli

CAFreeCAProperty
CACertTypeSetSecurity
CAGetCAProperty
CAGetCertTypeKeySpec
CACreateCertType
CAEnumNextCertType
CARemoveCACertificateType
CASetCertTypeExtension
CAGetCertTypeExtensions
CAEnumCertTypes
CAEnumCertTypesForCA
CAUpdateCertType
CAGetCertTypePropertyEx
CAGetCertTypeFlags
CACertTypeGetSecurity
CAFreeCertTypeExtensions
CASetCertTypeFlags
CAFindCertTypeByName
CAUpdateCA
CAGetCertTypeProperty
CASetCertTypeKeySpec
CAFreeCertTypeProperty
CASetCertTypeProperty
CACloseCertType
CACloseCA
CAFindByName
CAAddCACertificateType

msvcrt

_purecall
__RTDynamicCast
_adjust_fdiv
wcsrchr
wcslen
_wcsicmp
memmove
wcschr
??1type_info@@UAE@XZ
wcstoul
mbstowcs
wcscmp
__dllonexit
?terminate@@YAXXZ
_wcsupr
malloc
??3@YAXPAX@Z
free
_except_handler3
_initterm
wcscpy
wcscat
_onexit
vswprintf
wcsstr
??2@YAPAXI@Z

kernel32

GlobalUnlock
GetStartupInfoA
GetDateFormatW
WideCharToMultiByte
InitializeCriticalSection
InterlockedIncrement
lstrcpyW
GetEnvironmentStringsW
lstrcmpiW
GlobalLock
LocalReAlloc
GetSystemWindowsDirectoryW
GlobalAlloc
GlobalFree
FormatMessageW
CloseHandle
FileTimeToSystemTime
GetModuleFileNameW
LoadLibraryW
GetSystemTimeAsFileTime
IsBadReadPtr
GetModuleHandleA
FileTimeToLocalFileTime
GetTickCount
SetLastError
RemoveDirectoryA
CreateFileW
GetCurrentProcess
GetComputerNameW
LocalFree
SetUnhandledExceptionFilter
DeleteCriticalSection
GetACP
InterlockedDecrement
lstrlenW
OutputDebugStringA
QueryPerformanceCounter
GetSystemDefaultLangID
OutputDebugStringW
GetLastError

user32

LoadImageW
MessageBoxW
GetWindowLongW
SetWindowLongW
SendDlgItemMessageW
RegisterClipboardFormatW
PostMessageW
LoadCursorW
SetFocus
InsertMenuItemW
EndDialog
ReleaseDC
EnableWindow
GetDC
LoadIconW
wsprintfW
SetWindowTextW
GetDlgItemTextA
SetCursor
WinHelpW
LoadStringW
SystemParametersInfoW
LoadBitmapW
GetDlgItem
DialogBoxParamW
GetParent
SendMessageW
SetDlgItemTextW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dd8b7d6b572302f6d85d9cfe7fdcd4d7

Headers

File Characteristics

Imports

advapi32

certcli

msvcrt

kernel32

user32

comctl32

Sections

.text Size: 115KB - Virtual size: 114KB

.data Size: 53KB - Virtual size: 53KB

.data Size: 27KB - Virtual size: 6.2MB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 115KB - Virtual size: 114KB

.data
Size: 53KB - Virtual size: 53KB

.data
Size: 27KB - Virtual size: 6.2MB

.rsrc
Size: 3KB - Virtual size: 3KB