f2d1a42e69daed00c12a61a4d9de5df1a92f6056c90f33e3b8cda9b6d6c7b8d1

Sharing

Copy URL Twitter E-mail

General

Target

f2d1a42e69daed00c12a61a4d9de5df1a92f6056c90f33e3b8cda9b6d6c7b8d1
Size

195KB
MD5

53cdccc6fdc4e9d2c1a9e058cfb6ce1a
SHA1

03a6bef63329a1be6f582bc99ffd630f6a230427
SHA256

f2d1a42e69daed00c12a61a4d9de5df1a92f6056c90f33e3b8cda9b6d6c7b8d1
SHA512

703ba8790d6518709220d6ca904aeb97327c02adfaa83ae1ea98e715181a4f16fdd540b8a9dad8a7cd5449264bdacbb52d53a7108a11585ef213ff72d5fe131c
SSDEEP

3072:V+GE0JFT6DZy9U7M13xX6SIUGVVU6VM8Zw+yj10yzXPsfAZwIC+idOrL2QpEh6e:V+GRFWDWUI13x3IUkNu8uZEfq2

Score

N/A

Malware Config

Signatures

Files

f2d1a42e69daed00c12a61a4d9de5df1a92f6056c90f33e3b8cda9b6d6c7b8d1
.exe windows x86

0218e30021a531537149c3a6a9ae037c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
FileTimeToSystemTime
GetDateFormatW
QueryPerformanceCounter
GetLastError
OutputDebugStringW
GetModuleFileNameW
GlobalUnlock
InitializeCriticalSection
LocalFree
GetCPInfo
FileTimeToLocalFileTime
LoadLibraryW
lstrcpyW
IsBadReadPtr
GetTickCount
CloseHandle
GetCurrentThread
CreateFileW
GlobalFree
GlobalAlloc
GetStartupInfoA
GetModuleHandleA
lstrlenW
InterlockedIncrement
WideCharToMultiByte
SetUnhandledExceptionFilter
LocalReAlloc
GetSystemDefaultLangID
InterlockedDecrement
GetProcAddress
DeleteCriticalSection
SetLastError
lstrcmpiW
FormatMessageW
GetEnvironmentStringsW
GetComputerNameW
OutputDebugStringA
GetSystemWindowsDirectoryW
GlobalLock
GetSystemTimeAsFileTime

msvcrt

_except_handler3
wcsstr
__RTDynamicCast
??1type_info@@UAE@XZ
__dllonexit
free
_wcsupr
memmove
??2@YAPAXI@Z
wcschr
wcsrchr
?terminate@@YAXXZ
wcslen
wcscpy
vswprintf
??3@YAXPAX@Z
_onexit
wcstoul
_initterm
malloc
_adjust_fdiv
wcscat
_wcsicmp
wcscmp
mbstowcs

user32

DialogBoxParamW
LoadIconW
ReleaseDC
GetWindowLongW
LoadStringW
wsprintfW
EndDialog
SystemParametersInfoW
SendDlgItemMessageW
EnableWindow
SetWindowTextW
SendMessageW
GetDC
GetDlgItem
LoadImageW
SetDlgItemTextW
SetFocus
PostMessageW
SetCursor
InsertMenuItemW
RegisterClipboardFormatW
LoadBitmapW
LoadCursorW
SetWindowLongW
MessageBoxW
GetParent
GetDlgItemTextA
WinHelpW

certcli

CAGetCertTypeFlags
CAGetCertTypePropertyEx
CAFindByName
CAFreeCAProperty
CAGetCertTypeProperty
CACertTypeGetSecurity
CASetCertTypeProperty
CAUpdateCA
CAGetCertTypeExtensions
CACertTypeSetSecurity
CASetCertTypeFlags
CAGetCertTypeKeySpec
CACloseCertType
CAGetCAProperty
CASetCertTypeKeySpec
CACloseCA
CAFreeCertTypeExtensions
CAEnumCertTypesForCA
CAAddCACertificateType
CAUpdateCertType
CASetCertTypeExtension
CAEnumNextCertType
CACreateCertType
CAFreeCertTypeProperty
CARemoveCACertificateType
CAFindCertTypeByName
CAEnumCertTypes

advapi32

RegQueryValueExW
RegDeleteValueW
RegEnumKeyExW
RegCreateKeyExW
RegCloseKey
RegSetValueExW
RegDeleteKeyW
RegOpenKeyExW

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0218e30021a531537149c3a6a9ae037c

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

certcli

advapi32

Sections

.text Size: 76KB - Virtual size: 75KB

.data Size: 70KB - Virtual size: 69KB

.data Size: 46KB - Virtual size: 6.2MB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 76KB - Virtual size: 75KB

.data
Size: 70KB - Virtual size: 69KB

.data
Size: 46KB - Virtual size: 6.2MB

.rsrc
Size: 1KB - Virtual size: 1KB