e7e609d12671b1b16bd54db6e9f6277fc7e00678d08b5e391a2dcabd92802f86

Sharing

Copy URL Twitter E-mail

General

Target

e7e609d12671b1b16bd54db6e9f6277fc7e00678d08b5e391a2dcabd92802f86
Size

199KB
MD5

80d07057d5cd9b0d915201b0f7ee7b49
SHA1

67a6942f4240d5de5190ea6fdfee5b37f9df3c03
SHA256

e7e609d12671b1b16bd54db6e9f6277fc7e00678d08b5e391a2dcabd92802f86
SHA512

e924f0adeb74c26daecf34a25ff91b41ac92ab21654bdbf2e978c5b96aec875c8c5455a3fe1c36b13ce95292e77ec21942cf5c7d2c8b4bcadd45a4ed66976ee9
SSDEEP

6144:yCl619HVNa4tVd+wmVSvmMx/sGQ0RGKRAa5:U97amnU/25

Score

N/A

Malware Config

Signatures

Files

e7e609d12671b1b16bd54db6e9f6277fc7e00678d08b5e391a2dcabd92802f86
.exe windows x86

01e40a44a7ad20d2c8e70464e4b696fc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAEnumCertTypes
CAFindByName
CASetCertTypeProperty
CASetCertTypeFlags
CAGetCertTypePropertyEx
CAFreeCAProperty
CAGetCertTypeKeySpec
CACloseCertType
CAGetCertTypeExtensions
CARemoveCACertificateType
CACreateCertType
CACertTypeSetSecurity
CAEnumNextCertType
CAUpdateCertType
CASetCertTypeExtension
CAAddCACertificateType
CACloseCA
CASetCertTypeKeySpec
CAGetCertTypeFlags
CAUpdateCA
CAGetCAProperty
CAFreeCertTypeExtensions
CAFreeCertTypeProperty
CACertTypeGetSecurity
CAGetCertTypeProperty
CAFindCertTypeByName
CAEnumCertTypesForCA

user32

ReleaseDC
MessageBoxW
GetParent
SetWindowTextW
GetDlgItemTextA
PostMessageW
SetCursor
SetWindowLongW
RegisterClipboardFormatW
LoadStringW
SendMessageW
GetDC
SetDlgItemTextW
EnableWindow
SystemParametersInfoW
LoadCursorW
DialogBoxParamW
SetFocus
GetWindowLongW
LoadBitmapW
LoadImageW
wsprintfW
WinHelpW
GetDlgItem
EndDialog
LoadIconW
InsertMenuItemW
SendDlgItemMessageW

msvcrt

wcschr
??1type_info@@UAE@XZ
??3@YAXPAX@Z
wcstoul
vswprintf
??2@YAPAXI@Z
__dllonexit
_wcsicmp
memmove
wcscpy
?terminate@@YAXXZ
_purecall
_initterm
_wcsupr
wcscat
wcsstr
_onexit
wcsrchr
mbstowcs
malloc
_adjust_fdiv
free
_except_handler3
wcslen
wcscmp
__RTDynamicCast

kernel32

GetSystemTimeAsFileTime
LoadLibraryW
InterlockedDecrement
lstrlenW
GetModuleHandleA
RemoveDirectoryA
IsBadReadPtr
InterlockedIncrement
LocalReAlloc
QueryPerformanceCounter
GetDateFormatW
lstrcmpiW
GlobalAlloc
GetSystemDefaultLangID
OutputDebugStringW
GlobalLock
WideCharToMultiByte
GetComputerNameW
GetTickCount
FileTimeToSystemTime
InitializeCriticalSection
GetModuleFileNameW
DeleteCriticalSection
OutputDebugStringA
GetACP
SetLastError
FormatMessageW
GetCurrentProcess
GetStartupInfoA
GetLastError
GlobalUnlock
LocalFree
CreateFileW
CloseHandle
GlobalFree
GetSystemWindowsDirectoryW
lstrcpyW
GetEnvironmentStringsW
FileTimeToLocalFileTime
SetUnhandledExceptionFilter

advapi32

RegCreateKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegDeleteValueW
RegQueryValueExW
RegSetValueExW
RegOpenKeyExW
RegCloseKey

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01e40a44a7ad20d2c8e70464e4b696fc

Headers

File Characteristics

Imports

certcli

user32

msvcrt

kernel32

advapi32

comctl32

Sections

.text Size: 112KB - Virtual size: 112KB

.data Size: 52KB - Virtual size: 52KB

.data Size: 28KB - Virtual size: 6.2MB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 112KB - Virtual size: 112KB

.data
Size: 52KB - Virtual size: 52KB

.data
Size: 28KB - Virtual size: 6.2MB

.rsrc
Size: 4KB - Virtual size: 3KB