2cf8957b92a5b5516e59993f00ee322abc473e751443682b7ea3ff234e224e20

Sharing

Copy URL Twitter E-mail

General

Target

2cf8957b92a5b5516e59993f00ee322abc473e751443682b7ea3ff234e224e20
Size

199KB
MD5

10abb20659d03fbb529ae56401bc7be0
SHA1

13ebbc60a6c94c9752c134c46eda688f1b75cab5
SHA256

2cf8957b92a5b5516e59993f00ee322abc473e751443682b7ea3ff234e224e20
SHA512

53c5389e96918aaa64e8fc4d76064afa5def9148e5203a1af3ea582fd72cecb6aeb47afbce3c1693e41308ccdd3008a0a55779cbb88aa610fd6a2a95e0fdaf94
SSDEEP

3072:YpKl96h/fYxZRLh9QwvmnRNUxfaltF7Nvwk5Pr/koWXsMFjWSVm3khGEKPkL:5l96hngDReRNufMtFhwkdIo2FRVm8VL

Score

N/A

Malware Config

Signatures

Files

2cf8957b92a5b5516e59993f00ee322abc473e751443682b7ea3ff234e224e20
.exe windows x86

310917a275399b3fc904289dc61e331e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileW
lstrlenW
GetCurrentThread
GlobalLock
OutputDebugStringW
GetComputerNameW
LocalFree
GetModuleHandleA
InitializeCriticalSection
GetEnvironmentStringsW
LoadLibraryW
CloseHandle
LocalReAlloc
GlobalUnlock
GetSystemWindowsDirectoryW
lstrcmpiW
GetSystemDefaultLangID
OutputDebugStringA
GetProcAddress
GetCurrentProcess
InterlockedIncrement
GlobalAlloc
DeleteCriticalSection
GetTickCount
GetModuleFileNameW
WideCharToMultiByte
GetLastError
GlobalFree
IsBadReadPtr
InterlockedDecrement
FileTimeToSystemTime
FormatMessageW
GetDateFormatW
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
GetStartupInfoA
SetUnhandledExceptionFilter
SetLastError
QueryPerformanceCounter
GetCPInfo
lstrcpyW

certcli

CAFindCertTypeByName
CAEnumCertTypes
CASetCertTypeProperty
CAGetCertTypeProperty
CASetCertTypeKeySpec
CACertTypeGetSecurity
CAFreeCertTypeExtensions
CACloseCertType
CACreateCertType
CAFindByName
CAFreeCertTypeProperty
CAEnumCertTypesForCA
CACloseCA
CASetCertTypeExtension
CAGetCertTypePropertyEx
CACertTypeSetSecurity
CAGetCertTypeKeySpec
CAEnumNextCertType
CAFreeCAProperty
CAUpdateCA
CAGetCertTypeFlags
CARemoveCACertificateType
CAGetCAProperty
CAUpdateCertType
CASetCertTypeFlags
CAGetCertTypeExtensions
CAAddCACertificateType

user32

RegisterClipboardFormatW
SystemParametersInfoW
SendDlgItemMessageW
WinHelpW
PostMessageW
LoadIconW
SetDlgItemTextW
SetCursor
SetFocus
DialogBoxParamW
EndDialog
GetDC
SetWindowLongW
GetParent
LoadBitmapW
wsprintfW
LoadStringW
SetWindowTextW
EnableWindow
MessageBoxW
InsertMenuItemW
LoadImageW
GetDlgItemTextA
GetDlgItem
SendMessageW
GetWindowLongW
LoadCursorW
ReleaseDC

msvcrt

wcsrchr
vswprintf
_onexit
_except_handler3
??2@YAPAXI@Z
??1type_info@@UAE@XZ
wcscpy
memmove
__dllonexit
wcstoul
wcscmp
wcsstr
_initterm
__RTDynamicCast
mbstowcs
_wcsicmp
wcscat
?terminate@@YAXXZ
malloc
??3@YAXPAX@Z
_adjust_fdiv
wcschr
wcslen
_wcsupr
free

comctl32

PropertySheetW
CreatePropertySheetPageW

advapi32

RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyW
RegSetValueExW
RegDeleteValueW
RegCloseKey
RegEnumKeyExW
RegCreateKeyExW

Sections

.text
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

310917a275399b3fc904289dc61e331e

Headers

File Characteristics

Imports

kernel32

certcli

user32

msvcrt

comctl32

advapi32

Sections

.text Size: 79KB - Virtual size: 78KB

.data Size: 70KB - Virtual size: 70KB

.data Size: 46KB - Virtual size: 6.2MB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 79KB - Virtual size: 78KB

.data
Size: 70KB - Virtual size: 70KB

.data
Size: 46KB - Virtual size: 6.2MB

.rsrc
Size: 2KB - Virtual size: 1KB