063b2d2303c99a411b9bffdddc698982d3ff5cecbe31ecd52ca0a3508cab8a61

Sharing

Copy URL Twitter E-mail

General

Target

063b2d2303c99a411b9bffdddc698982d3ff5cecbe31ecd52ca0a3508cab8a61
Size

201KB
MD5

92811a6fd4307fc19e5c6925a5142d74
SHA1

03311d94a4dbcd3d2d8df8b0f7544e3a3cbdbd76
SHA256

063b2d2303c99a411b9bffdddc698982d3ff5cecbe31ecd52ca0a3508cab8a61
SHA512

fce704f1e074e29d651f13e9a8783c61b95fa2ba656b008fc4788ca20dd6cf7c22934feb3f438dbb54ab3ebf9dd76c49deb11d08164e86ae051de2a795f06fc4
SSDEEP

6144:fhci7bwpfm0ymYfuxp4UolNhb+gKDhF4U:ZhwJXpGhb+g4hJ

Score

N/A

Malware Config

Signatures

Files

063b2d2303c99a411b9bffdddc698982d3ff5cecbe31ecd52ca0a3508cab8a61
.exe windows x86

d0e180b511f1850f36a001a241d1a311

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAGetCertTypeProperty
CACloseCertType
CAUpdateCA
CAFreeCertTypeExtensions
CAGetCertTypeFlags
CAGetCertTypeKeySpec
CASetCertTypeFlags
CAFindByName
CAGetCertTypeExtensions
CACertTypeSetSecurity
CAGetCAProperty
CAEnumCertTypesForCA
CARemoveCACertificateType
CAAddCACertificateType
CAEnumCertTypes
CASetCertTypeKeySpec
CASetCertTypeExtension
CAEnumNextCertType
CAUpdateCertType
CAGetCertTypePropertyEx
CAFreeCertTypeProperty
CAFreeCAProperty
CASetCertTypeProperty
CACreateCertType
CACertTypeGetSecurity
CACloseCA
CAFindCertTypeByName

kernel32

CloseHandle
WideCharToMultiByte
LocalReAlloc
InterlockedIncrement
FormatMessageW
lstrlenW
lstrcmpiW
OutputDebugStringA
InitializeCriticalSection
GetModuleHandleA
GetComputerNameW
LoadLibraryW
InterlockedDecrement
OutputDebugStringW
GetACP
IsBadReadPtr
lstrcpyW
GetTickCount
GetLastError
FileTimeToLocalFileTime
GetSystemWindowsDirectoryW
GetEnvironmentStringsW
GetDateFormatW
GetModuleFileNameW
GetSystemDefaultLangID
FileTimeToSystemTime
DeleteCriticalSection
RemoveDirectoryA
LocalFree
SetUnhandledExceptionFilter
SetLastError
CreateFileW
GlobalLock
QueryPerformanceCounter
GetStartupInfoA
GlobalAlloc
GlobalUnlock
GetCurrentProcess
GlobalFree
GetSystemTimeAsFileTime

user32

LoadBitmapW
GetDlgItemTextA
wsprintfW
SetWindowTextW
GetWindowLongW
GetDC
LoadCursorW
EnableWindow
WinHelpW
PostMessageW
SetCursor
LoadStringW
SetFocus
EndDialog
InsertMenuItemW
RegisterClipboardFormatW
SendMessageW
SetDlgItemTextW
ReleaseDC
SetWindowLongW
SystemParametersInfoW
MessageBoxW
GetDlgItem
SendDlgItemMessageW
LoadIconW
DialogBoxParamW
LoadImageW
GetParent

msvcrt

wcscpy
__dllonexit
wcstoul
_except_handler3
_wcsupr
malloc
_wcsicmp
?terminate@@YAXXZ
mbstowcs
wcscmp
wcscat
memmove
vswprintf
??3@YAXPAX@Z
__RTDynamicCast
??2@YAPAXI@Z
wcsrchr
_purecall
wcschr
_adjust_fdiv
_onexit
_initterm
free
??1type_info@@UAE@XZ
wcsstr
wcslen

advapi32

RegCloseKey
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW
RegOpenKeyExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d0e180b511f1850f36a001a241d1a311

Headers

File Characteristics

Imports

certcli

kernel32

user32

msvcrt

advapi32

comctl32

Sections

.text Size: 116KB - Virtual size: 115KB

.data Size: 49KB - Virtual size: 49KB

.data Size: 31KB - Virtual size: 6.2MB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 116KB - Virtual size: 115KB

.data
Size: 49KB - Virtual size: 49KB

.data
Size: 31KB - Virtual size: 6.2MB

.rsrc
Size: 3KB - Virtual size: 2KB