63c2bcd23bb66db8c0da8f903bf3b6faf201e74e228d905a868c3034ced04e60

Sharing

Copy URL

Twitter E-mail

General

Target

63c2bcd23bb66db8c0da8f903bf3b6faf201e74e228d905a868c3034ced04e60
Size

199KB
MD5

31ef143408120aa9e3e64b9d29ef272f
SHA1

3afe82b422c8da1b6c9b7044ec00c941cfc0c387
SHA256

63c2bcd23bb66db8c0da8f903bf3b6faf201e74e228d905a868c3034ced04e60
SHA512

d9f8b108eb07d67ce40b100be74e56ebe72cd746e272a5dd8451a0308791e4402e1993a48f9fd1e0c736d01737dc0db67f2b8e2d4c03701f8b992d287bcaffe4
SSDEEP

6144:yCl619HVNa4tVd+wmVSvmMx/sGQ0RGKRAa3:U97amnU/23

Score

N/A

Malware Config

Signatures

Files

63c2bcd23bb66db8c0da8f903bf3b6faf201e74e228d905a868c3034ced04e60
.exe windows x86

01e40a44a7ad20d2c8e70464e4b696fc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAEnumCertTypes
CAFindByName
CASetCertTypeProperty
CASetCertTypeFlags
CAGetCertTypePropertyEx
CAFreeCAProperty
CAGetCertTypeKeySpec
CACloseCertType
CAGetCertTypeExtensions
CARemoveCACertificateType
CACreateCertType
CACertTypeSetSecurity
CAEnumNextCertType
CAUpdateCertType
CASetCertTypeExtension
CAAddCACertificateType
CACloseCA
CASetCertTypeKeySpec
CAGetCertTypeFlags
CAUpdateCA
CAGetCAProperty
CAFreeCertTypeExtensions
CAFreeCertTypeProperty
CACertTypeGetSecurity
CAGetCertTypeProperty
CAFindCertTypeByName
CAEnumCertTypesForCA

user32

ReleaseDC
MessageBoxW
GetParent
SetWindowTextW
GetDlgItemTextA
PostMessageW
SetCursor
SetWindowLongW
RegisterClipboardFormatW
LoadStringW
SendMessageW
GetDC
SetDlgItemTextW
EnableWindow
SystemParametersInfoW
LoadCursorW
DialogBoxParamW
SetFocus
GetWindowLongW
LoadBitmapW
LoadImageW
wsprintfW
WinHelpW
GetDlgItem
EndDialog
LoadIconW
InsertMenuItemW
SendDlgItemMessageW

msvcrt

wcschr
??1type_info@@UAE@XZ
??3@YAXPAX@Z
wcstoul
vswprintf
??2@YAPAXI@Z
__dllonexit
_wcsicmp
memmove
wcscpy
?terminate@@YAXXZ
_purecall
_initterm
_wcsupr
wcscat
wcsstr
_onexit
wcsrchr
mbstowcs
malloc
_adjust_fdiv
free
_except_handler3
wcslen
wcscmp
__RTDynamicCast

kernel32

GetSystemTimeAsFileTime
LoadLibraryW
InterlockedDecrement
lstrlenW
GetModuleHandleA
RemoveDirectoryA
IsBadReadPtr
InterlockedIncrement
LocalReAlloc
QueryPerformanceCounter
GetDateFormatW
lstrcmpiW
GlobalAlloc
GetSystemDefaultLangID
OutputDebugStringW
GlobalLock
WideCharToMultiByte
GetComputerNameW
GetTickCount
FileTimeToSystemTime
InitializeCriticalSection
GetModuleFileNameW
DeleteCriticalSection
OutputDebugStringA
GetACP
SetLastError
FormatMessageW
GetCurrentProcess
GetStartupInfoA
GetLastError
GlobalUnlock
LocalFree
CreateFileW
CloseHandle
GlobalFree
GetSystemWindowsDirectoryW
lstrcpyW
GetEnvironmentStringsW
FileTimeToLocalFileTime
SetUnhandledExceptionFilter

advapi32

RegCreateKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegDeleteValueW
RegQueryValueExW
RegSetValueExW
RegOpenKeyExW
RegCloseKey

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01e40a44a7ad20d2c8e70464e4b696fc

Headers

File Characteristics

Imports

certcli

user32

msvcrt

kernel32

advapi32

comctl32

Sections

.text Size: 112KB - Virtual size: 112KB

.data Size: 52KB - Virtual size: 52KB

.data Size: 28KB - Virtual size: 6.2MB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 112KB - Virtual size: 112KB

.data
Size: 52KB - Virtual size: 52KB

.data
Size: 28KB - Virtual size: 6.2MB

.rsrc
Size: 4KB - Virtual size: 3KB