a23b3f83a90a4be3a44aeaa1a424ce5ae35a0318306cc4fea321838b662fcd94

Sharing

Copy URL Twitter E-mail

General

Target

a23b3f83a90a4be3a44aeaa1a424ce5ae35a0318306cc4fea321838b662fcd94
Size

92KB
MD5

9ec7cd8d2356a1edfd4ad96ec1bbb2b8
SHA1

82d64e9cf26cce9a1cbf6bd09c87fb71cfac4af8
SHA256

a23b3f83a90a4be3a44aeaa1a424ce5ae35a0318306cc4fea321838b662fcd94
SHA512

6602259a21953ebe857df37492d10878963f17ea1230d7eee0ac92b91828d5dee1d33ffc9f45d8087150dc4bb5f7cb8473216e912900e36e452b0a1609e5b796
SSDEEP

1536:ZuE4To5MSfJlP1K6oNHhK6oN8K6oNNbBP9TDWSbDkEtFXFSFOQ6OCnP79KSHrwGe:Z9fvToNPoNKoNtBPNWMk2XfP79/H0tBr

Score

N/A

Malware Config

Signatures

Files

a23b3f83a90a4be3a44aeaa1a424ce5ae35a0318306cc4fea321838b662fcd94
.exe windows x86

82e77150e0c3f580ff63fef47d1bd317

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

crypt32

CryptFindOIDInfo
CertAddStoreToCollection
CertFreeCRLContext
CertCreateCTLContext
CertGetNameStringA
CertFindExtension
CertCreateCRLContext
CertFindChainInStore
CertCreateContext
CertDuplicateCRLContext
CertFindAttribute
CertCompareCertificate
CertNameToStrA

dhcpsapi

DhcpAddServer
DhcpCreateClass
DhcpCreateOption
DhcpDeleteClass

user32

MessageBoxA
PostMessageW
DrawTextExA
GetPropA
OemToCharA
FindWindowExA
EndDialog
CreateWindowExW
InsertMenuW
DefDlgProcW
GetWindowTextA
CreateDesktopA
InsertMenuW
EnumWindows
EnumDesktopsA
SendMessageA
GetFocus
wsprintfW

msimg32

TransparentBlt
DllInitialize

uxtheme

OpenThemeData
IsThemeActive
GetThemeSysColor
DrawThemeEdge
DrawThemeBackground
GetThemeTextMetrics
SetWindowTheme
GetThemeSysBool
GetThemeRect
GetThemeFont
GetCurrentThemeName
GetThemeSysSize

odbctrac

TraceSQLConnect
TraceSQLFetch
TraceSQLError
TraceSQLBindCol

kernel32

CompareStringW
CreateMutexW
FormatMessageA
GetEnvironmentVariableW
GetProcAddress
InitializeCriticalSection
SearchPathW
CreateEventA
LoadLibraryA
GetCurrentDirectoryA
GetLocaleInfoW
ReadConsoleW
FindFirstFileA
CopyFileA
GetLogicalDriveStringsA
WaitForSingleObject
GetDateFormatA
GetOEMCP

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

82e77150e0c3f580ff63fef47d1bd317

Headers

File Characteristics

Imports

crypt32

dhcpsapi

user32

msimg32

uxtheme

odbctrac

kernel32

Sections

.text Size: 16KB - Virtual size: 13KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 228KB

.rsrc Size: 64KB - Virtual size: 62KB

.text
Size: 16KB - Virtual size: 13KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 228KB

.rsrc
Size: 64KB - Virtual size: 62KB