fcd32d49a63b951796c2b1a6c12c02855ed31f2afc28e0e27e3443a341400041

Sharing

Copy URL Twitter E-mail

General

Target

fcd32d49a63b951796c2b1a6c12c02855ed31f2afc28e0e27e3443a341400041
Size

197KB
MD5

7b6b5f05b606886b5ad54b84f3dcf066
SHA1

a8574b44fb9482919aa6c5d235ae18d8c44d830e
SHA256

fcd32d49a63b951796c2b1a6c12c02855ed31f2afc28e0e27e3443a341400041
SHA512

8c871c7151bc38f9cc45c15e3693d1605b28b59e24a9a9a0249491edbdcf9711372c7bd696015fa87bf78eaf6434fce942ab78043f74f4482434ff79b4e415ed
SSDEEP

6144:fFxkR2kKM8wLBrcgJBr9i8ydGWFtGbuiSCIIbaZgq+GeL:48wVVaYmkI6n1

Score

N/A

Malware Config

Signatures

Files

fcd32d49a63b951796c2b1a6c12c02855ed31f2afc28e0e27e3443a341400041
.exe windows x86

2e37a1c0919a461263bd306a4dcc08d4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAEnumNextCertType
CAFreeCertTypeProperty
CASetCertTypeProperty
CAAddCACertificateType
CASetCertTypeKeySpec
CARemoveCACertificateType
CAEnumCertTypesForCA
CAGetCertTypeProperty
CACloseCA
CAGetCertTypeKeySpec
CAUpdateCertType
CAUpdateCA
CAGetCertTypePropertyEx
CAGetCAProperty
CAFindByName
CASetCertTypeFlags
CAFindCertTypeByName
CACreateCertType
CACertTypeSetSecurity
CAGetCertTypeExtensions
CACloseCertType
CACertTypeGetSecurity
CAEnumCertTypes
CAGetCertTypeFlags
CAFreeCAProperty
CASetCertTypeExtension
CAFreeCertTypeExtensions

msvcrt

_wcsupr
__RTDynamicCast
wcscpy
_except_handler3
wcstoul
_wcsicmp
wcscat
wcscmp
wcsrchr
vswprintf
wcschr
wcsstr
wcslen
??2@YAPAXI@Z
free
_adjust_fdiv
??3@YAXPAX@Z
?terminate@@YAXXZ
??1type_info@@UAE@XZ
_purecall
__dllonexit
malloc
_initterm
_onexit
mbstowcs
memmove

user32

GetDC
EnableWindow
PostMessageW
SendMessageW
LoadBitmapW
LoadImageW
SetCursor
InsertMenuItemW
GetDlgItem
GetParent
SetDlgItemTextW
LoadCursorW
LoadStringW
SetFocus
SetWindowLongW
GetDlgItemTextA
SetWindowTextW
SystemParametersInfoW
LoadIconW
EndDialog
RegisterClipboardFormatW
wsprintfW
WinHelpW
ReleaseDC
SendDlgItemMessageW
MessageBoxW
DialogBoxParamW
GetWindowLongW

kernel32

LoadLibraryW
GetACP
OutputDebugStringA
GetStartupInfoA
OutputDebugStringW
InterlockedIncrement
InterlockedDecrement
lstrlenW
GetSystemTimeAsFileTime
lstrcpyW
GetSystemWindowsDirectoryW
SetLastError
GlobalLock
GetModuleHandleA
RemoveDirectoryA
LocalReAlloc
GetLastError
lstrcmpiW
InitializeCriticalSection
FileTimeToLocalFileTime
GetEnvironmentStringsW
CloseHandle
IsBadReadPtr
FormatMessageW
GetDateFormatW
GetSystemDefaultLangID
GlobalUnlock
GlobalAlloc
CreateFileW
GlobalFree
LocalFree
QueryPerformanceCounter
DeleteCriticalSection
WideCharToMultiByte
GetComputerNameW
GetModuleFileNameW
GetCurrentProcess
GetTickCount
SetUnhandledExceptionFilter
FileTimeToSystemTime

advapi32

RegEnumKeyExW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteValueW
RegCloseKey
RegDeleteKeyW
RegSetValueExW
RegQueryValueExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e37a1c0919a461263bd306a4dcc08d4

Headers

File Characteristics

Imports

certcli

msvcrt

user32

kernel32

advapi32

comctl32

Sections

.text Size: 113KB - Virtual size: 113KB

.data Size: 52KB - Virtual size: 52KB

.data Size: 27KB - Virtual size: 6.2MB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 113KB - Virtual size: 113KB

.data
Size: 52KB - Virtual size: 52KB

.data
Size: 27KB - Virtual size: 6.2MB

.rsrc
Size: 1KB - Virtual size: 1KB