a1fb19af6533b1cb547ef0f0681310ad49c06c04a04843ea58468d62927bea53

Sharing

Copy URL Twitter E-mail

General

Target

a1fb19af6533b1cb547ef0f0681310ad49c06c04a04843ea58468d62927bea53
Size

199KB
MD5

0e18dd54be756e424afc20aaf08cf354
SHA1

586d313c311bc8742ab1249306a4d6524a08c80d
SHA256

a1fb19af6533b1cb547ef0f0681310ad49c06c04a04843ea58468d62927bea53
SHA512

5aa6031d283929a8cef903641d9dccd9e67e111b326c2d936c2cf27e15019794172caaeb8e63fac085fc5c1842d270e1c62c6dd3a29bdf36088b0cc9afc7d775
SSDEEP

6144:tFFv48UvBaX12q8yNpyVxTkyAOSdC3eaKlv6fWP20qoc:t7A8GBaXgqtIQyA3ursSIjqoc

Score

N/A

Malware Config

Signatures

Files

a1fb19af6533b1cb547ef0f0681310ad49c06c04a04843ea58468d62927bea53
.exe windows x86

ad8b5b3b05f87047cd1e067903161598

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAFreeCertTypeProperty
CASetCertTypeExtension
CAGetCertTypeFlags
CAGetCertTypePropertyEx
CAEnumCertTypes
CAGetCertTypeProperty
CAFreeCAProperty
CASetCertTypeProperty
CASetCertTypeFlags
CAEnumCertTypesForCA
CACertTypeGetSecurity
CASetCertTypeKeySpec
CAGetCertTypeKeySpec
CAAddCACertificateType
CARemoveCACertificateType
CAUpdateCA
CACreateCertType
CACertTypeSetSecurity
CAGetCertTypeExtensions
CAFreeCertTypeExtensions
CACloseCertType
CAEnumNextCertType
CAGetCAProperty
CAFindCertTypeByName
CAUpdateCertType
CAFindByName
CACloseCA

kernel32

GlobalAlloc
GetACP
WideCharToMultiByte
GetEnvironmentStringsW
InterlockedIncrement
GlobalFree
GetCurrentProcess
LocalReAlloc
GetSystemTimeAsFileTime
OutputDebugStringW
OutputDebugStringA
InitializeCriticalSection
lstrcpyW
GetStartupInfoA
GlobalUnlock
IsBadReadPtr
SetUnhandledExceptionFilter
GlobalLock
lstrcmpiW
LoadLibraryW
FileTimeToSystemTime
DeleteCriticalSection
RemoveDirectoryA
GetComputerNameW
FormatMessageW
SetLastError
GetLastError
GetSystemDefaultLangID
FileTimeToLocalFileTime
CreateFileW
QueryPerformanceCounter
CloseHandle
GetTickCount
GetSystemWindowsDirectoryW
LocalFree
GetModuleHandleA
InterlockedDecrement
GetModuleFileNameW
GetDateFormatW
lstrlenW

user32

LoadBitmapW
ReleaseDC
LoadStringW
PostMessageW
GetDlgItem
SetCursor
SetFocus
SystemParametersInfoW
WinHelpW
SendMessageW
SetDlgItemTextW
GetWindowLongW
MessageBoxW
LoadIconW
RegisterClipboardFormatW
SetWindowTextW
DialogBoxParamW
InsertMenuItemW
GetParent
GetDlgItemTextA
SendDlgItemMessageW
wsprintfW
LoadImageW
EnableWindow
GetDC
EndDialog
SetWindowLongW
LoadCursorW

msvcrt

?terminate@@YAXXZ
__RTDynamicCast
??2@YAPAXI@Z
wcscat
free
_wcsupr
vswprintf
??3@YAXPAX@Z
_wcsicmp
wcsrchr
wcschr
_purecall
__dllonexit
memmove
wcslen
_onexit
_initterm
_except_handler3
wcsstr
mbstowcs
??1type_info@@UAE@XZ
wcscpy
wcstoul
wcscmp
_adjust_fdiv
malloc

comctl32

CreatePropertySheetPageW
PropertySheetW

advapi32

RegCreateKeyExW
RegDeleteValueW
RegCloseKey
RegEnumKeyExW
RegSetValueExW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW

Sections

.text
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad8b5b3b05f87047cd1e067903161598

Headers

File Characteristics

Imports

certcli

kernel32

user32

msvcrt

comctl32

advapi32

Sections

.text Size: 79KB - Virtual size: 78KB

.data Size: 52KB - Virtual size: 52KB

.data Size: 64KB - Virtual size: 6.2MB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 79KB - Virtual size: 78KB

.data
Size: 52KB - Virtual size: 52KB

.data
Size: 64KB - Virtual size: 6.2MB

.rsrc
Size: 1KB - Virtual size: 1KB