55376bc820277277a32da68f83899d521c73537e3a6cd115be30551ae89a6b49

Sharing

Copy URL Twitter E-mail

General

Target

55376bc820277277a32da68f83899d521c73537e3a6cd115be30551ae89a6b49
Size

195KB
MD5

0eb6ff6343570a90d03ed7070f58ee52
SHA1

fcc63fe591166a3b53844326cf31ebf21f66c730
SHA256

55376bc820277277a32da68f83899d521c73537e3a6cd115be30551ae89a6b49
SHA512

5572e10de0b8436e3fbeec62210307fc2654f7fd360ec7c3eae04b5b0a0caa3674e75a4e7dce6352e93836eee5eaac391af6f5515765cc3d33de3e62f2189d04
SSDEEP

6144:e+MOjf0xmFxcvhKGE/msKcAJYirvbp/uuW0nIgUgMRIVN:o0Fo639iHRlnIHPmVN

Score

N/A

Malware Config

Signatures

Files

55376bc820277277a32da68f83899d521c73537e3a6cd115be30551ae89a6b49
.exe windows x86

3de82d459154e22900303769828dd3b3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SystemParametersInfoW
GetDlgItemTextA
ReleaseDC
SetWindowTextW
LoadCursorW
EnableWindow
GetWindowLongW
SetDlgItemTextW
EndDialog
SetWindowLongW
LoadIconW
wsprintfW
SetFocus
GetDlgItem
RegisterClipboardFormatW
LoadImageW
SendMessageW
DialogBoxParamW
LoadStringW
LoadBitmapW
GetDC
SendDlgItemMessageW
PostMessageW
WinHelpW
GetParent
MessageBoxW
SetCursor
InsertMenuItemW

msvcrt

wcsstr
wcsrchr
_wcsupr
wcschr
_adjust_fdiv
wcscmp
vswprintf
_purecall
wcscpy
_initterm
wcstoul
free
wcslen
??2@YAPAXI@Z
_wcsicmp
malloc
_onexit
_except_handler3
__RTDynamicCast
__dllonexit
wcscat
?terminate@@YAXXZ
mbstowcs
??1type_info@@UAE@XZ
??3@YAXPAX@Z
memmove

certcli

CARemoveCACertificateType
CAFreeCertTypeProperty
CASetCertTypeKeySpec
CACertTypeGetSecurity
CASetCertTypeProperty
CAGetCertTypeProperty
CAFreeCAProperty
CACreateCertType
CAFreeCertTypeExtensions
CAEnumCertTypesForCA
CAGetCertTypeExtensions
CAAddCACertificateType
CACloseCA
CACloseCertType
CACertTypeSetSecurity
CAUpdateCertType
CAGetCertTypeKeySpec
CAGetCertTypePropertyEx
CAGetCertTypeFlags
CAEnumCertTypes
CASetCertTypeExtension
CASetCertTypeFlags
CAFindByName
CAGetCAProperty
CAUpdateCA
CAFindCertTypeByName
CAEnumNextCertType

kernel32

InterlockedIncrement
RemoveDirectoryA
SetLastError
GlobalUnlock
GlobalAlloc
WideCharToMultiByte
lstrlenW
GetComputerNameW
IsValidCodePage
QueryPerformanceCounter
CreateFileW
lstrcmpiW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetEnvironmentStringsA
GetTickCount
GetModuleHandleA
LocalReAlloc
InitializeCriticalSection
OutputDebugStringW
InterlockedDecrement
GetCPInfo
GetProcAddress
LoadLibraryW
GetCurrentProcess
GetModuleFileNameW
LocalFree
GetStartupInfoA
GetSystemTimeAsFileTime
CloseHandle
OutputDebugStringA
DeleteCriticalSection
GetACP
FormatMessageW
GlobalLock
IsBadReadPtr
GetLastError
GetDateFormatW
GetSystemWindowsDirectoryW
GlobalFree
SetUnhandledExceptionFilter
lstrcpyW

advapi32

RegQueryValueExW
RegEnumKeyExW
RegCloseKey
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteValueW

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

comctl32

PropertySheetW
CreatePropertySheetPageW

shell32

ShellExecuteExW
ShellExecuteW

Sections

.code
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3de82d459154e22900303769828dd3b3

Headers

File Characteristics

Imports

user32

msvcrt

certcli

kernel32

advapi32

gdi32

comctl32

shell32

Sections

.code Size: 88KB - Virtual size: 88KB

.rdata Size: 103KB - Virtual size: 2.5MB

.rsrc Size: 1KB - Virtual size: 1KB

.code
Size: 88KB - Virtual size: 88KB

.rdata
Size: 103KB - Virtual size: 2.5MB

.rsrc
Size: 1KB - Virtual size: 1KB