8159b744171c6758ec373f005f3aed8573773b47d9390c188b9a3495655398dd

Sharing

Copy URL Twitter E-mail

General

Target

8159b744171c6758ec373f005f3aed8573773b47d9390c188b9a3495655398dd
Size

195KB
MD5

30fadacc5d4e2f15b62ba06bc6e8da18
SHA1

9e8e032e7ed5945238b357eb3665dedc734fdbd6
SHA256

8159b744171c6758ec373f005f3aed8573773b47d9390c188b9a3495655398dd
SHA512

b029084e357e3a3797c2b0f4277204dbe784d80917f0311680f73ace26cb29535c45aa5098a3f9438ec6b733a638fc17594e6ed0ea1960658b52879a120fa9ab
SSDEEP

3072:V+GE0JFT6DZy9U7M13xX6SIUGVVU6VM8Zw+yj10yzXPsfAZwIC+idOrL2QpEG:V+GRFWDWUI13x3IUkNu8uZEfqx

Score

N/A

Malware Config

Signatures

Files

8159b744171c6758ec373f005f3aed8573773b47d9390c188b9a3495655398dd
.exe windows x86

0218e30021a531537149c3a6a9ae037c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
FileTimeToSystemTime
GetDateFormatW
QueryPerformanceCounter
GetLastError
OutputDebugStringW
GetModuleFileNameW
GlobalUnlock
InitializeCriticalSection
LocalFree
GetCPInfo
FileTimeToLocalFileTime
LoadLibraryW
lstrcpyW
IsBadReadPtr
GetTickCount
CloseHandle
GetCurrentThread
CreateFileW
GlobalFree
GlobalAlloc
GetStartupInfoA
GetModuleHandleA
lstrlenW
InterlockedIncrement
WideCharToMultiByte
SetUnhandledExceptionFilter
LocalReAlloc
GetSystemDefaultLangID
InterlockedDecrement
GetProcAddress
DeleteCriticalSection
SetLastError
lstrcmpiW
FormatMessageW
GetEnvironmentStringsW
GetComputerNameW
OutputDebugStringA
GetSystemWindowsDirectoryW
GlobalLock
GetSystemTimeAsFileTime

msvcrt

_except_handler3
wcsstr
__RTDynamicCast
??1type_info@@UAE@XZ
__dllonexit
free
_wcsupr
memmove
??2@YAPAXI@Z
wcschr
wcsrchr
?terminate@@YAXXZ
wcslen
wcscpy
vswprintf
??3@YAXPAX@Z
_onexit
wcstoul
_initterm
malloc
_adjust_fdiv
wcscat
_wcsicmp
wcscmp
mbstowcs

user32

DialogBoxParamW
LoadIconW
ReleaseDC
GetWindowLongW
LoadStringW
wsprintfW
EndDialog
SystemParametersInfoW
SendDlgItemMessageW
EnableWindow
SetWindowTextW
SendMessageW
GetDC
GetDlgItem
LoadImageW
SetDlgItemTextW
SetFocus
PostMessageW
SetCursor
InsertMenuItemW
RegisterClipboardFormatW
LoadBitmapW
LoadCursorW
SetWindowLongW
MessageBoxW
GetParent
GetDlgItemTextA
WinHelpW

certcli

CAGetCertTypeFlags
CAGetCertTypePropertyEx
CAFindByName
CAFreeCAProperty
CAGetCertTypeProperty
CACertTypeGetSecurity
CASetCertTypeProperty
CAUpdateCA
CAGetCertTypeExtensions
CACertTypeSetSecurity
CASetCertTypeFlags
CAGetCertTypeKeySpec
CACloseCertType
CAGetCAProperty
CASetCertTypeKeySpec
CACloseCA
CAFreeCertTypeExtensions
CAEnumCertTypesForCA
CAAddCACertificateType
CAUpdateCertType
CASetCertTypeExtension
CAEnumNextCertType
CACreateCertType
CAFreeCertTypeProperty
CARemoveCACertificateType
CAFindCertTypeByName
CAEnumCertTypes

advapi32

RegQueryValueExW
RegDeleteValueW
RegEnumKeyExW
RegCreateKeyExW
RegCloseKey
RegSetValueExW
RegDeleteKeyW
RegOpenKeyExW

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0218e30021a531537149c3a6a9ae037c

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

certcli

advapi32

Sections

.text Size: 76KB - Virtual size: 75KB

.data Size: 70KB - Virtual size: 69KB

.data Size: 46KB - Virtual size: 6.2MB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 76KB - Virtual size: 75KB

.data
Size: 70KB - Virtual size: 69KB

.data
Size: 46KB - Virtual size: 6.2MB

.rsrc
Size: 1KB - Virtual size: 1KB