30b5fef84b853fdc1162b3c2f240fd1559c46fb5c7dee1b2f4eb2556a131a3e5

Sharing

Copy URL Twitter E-mail

General

Target

30b5fef84b853fdc1162b3c2f240fd1559c46fb5c7dee1b2f4eb2556a131a3e5
Size

201KB
MD5

0a9af0abb1d8275469f180609e9cd397
SHA1

b0b4c9935613fe5b4eb493d3dab0cb59e355e40b
SHA256

30b5fef84b853fdc1162b3c2f240fd1559c46fb5c7dee1b2f4eb2556a131a3e5
SHA512

707dc684148ba4e94bd8aea8073e29238711e1ca9ee62e0df88fb1d1543cf56b138b8a42b97bcab12f00bb16e706a285c5adbde8b3c6f3a926c2296094b55dfc
SSDEEP

6144:fhci7bwpfm0ymYfuxp4UolNhb+gKDhFtP:ZhwJXpGhb+g4hv

Score

N/A

Malware Config

Signatures

Files

30b5fef84b853fdc1162b3c2f240fd1559c46fb5c7dee1b2f4eb2556a131a3e5
.exe windows x86

d0e180b511f1850f36a001a241d1a311

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAGetCertTypeProperty
CACloseCertType
CAUpdateCA
CAFreeCertTypeExtensions
CAGetCertTypeFlags
CAGetCertTypeKeySpec
CASetCertTypeFlags
CAFindByName
CAGetCertTypeExtensions
CACertTypeSetSecurity
CAGetCAProperty
CAEnumCertTypesForCA
CARemoveCACertificateType
CAAddCACertificateType
CAEnumCertTypes
CASetCertTypeKeySpec
CASetCertTypeExtension
CAEnumNextCertType
CAUpdateCertType
CAGetCertTypePropertyEx
CAFreeCertTypeProperty
CAFreeCAProperty
CASetCertTypeProperty
CACreateCertType
CACertTypeGetSecurity
CACloseCA
CAFindCertTypeByName

kernel32

CloseHandle
WideCharToMultiByte
LocalReAlloc
InterlockedIncrement
FormatMessageW
lstrlenW
lstrcmpiW
OutputDebugStringA
InitializeCriticalSection
GetModuleHandleA
GetComputerNameW
LoadLibraryW
InterlockedDecrement
OutputDebugStringW
GetACP
IsBadReadPtr
lstrcpyW
GetTickCount
GetLastError
FileTimeToLocalFileTime
GetSystemWindowsDirectoryW
GetEnvironmentStringsW
GetDateFormatW
GetModuleFileNameW
GetSystemDefaultLangID
FileTimeToSystemTime
DeleteCriticalSection
RemoveDirectoryA
LocalFree
SetUnhandledExceptionFilter
SetLastError
CreateFileW
GlobalLock
QueryPerformanceCounter
GetStartupInfoA
GlobalAlloc
GlobalUnlock
GetCurrentProcess
GlobalFree
GetSystemTimeAsFileTime

user32

LoadBitmapW
GetDlgItemTextA
wsprintfW
SetWindowTextW
GetWindowLongW
GetDC
LoadCursorW
EnableWindow
WinHelpW
PostMessageW
SetCursor
LoadStringW
SetFocus
EndDialog
InsertMenuItemW
RegisterClipboardFormatW
SendMessageW
SetDlgItemTextW
ReleaseDC
SetWindowLongW
SystemParametersInfoW
MessageBoxW
GetDlgItem
SendDlgItemMessageW
LoadIconW
DialogBoxParamW
LoadImageW
GetParent

msvcrt

wcscpy
__dllonexit
wcstoul
_except_handler3
_wcsupr
malloc
_wcsicmp
?terminate@@YAXXZ
mbstowcs
wcscmp
wcscat
memmove
vswprintf
??3@YAXPAX@Z
__RTDynamicCast
??2@YAPAXI@Z
wcsrchr
_purecall
wcschr
_adjust_fdiv
_onexit
_initterm
free
??1type_info@@UAE@XZ
wcsstr
wcslen

advapi32

RegCloseKey
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW
RegOpenKeyExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 6.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d0e180b511f1850f36a001a241d1a311

Headers

File Characteristics

Imports

certcli

kernel32

user32

msvcrt

advapi32

comctl32

Sections

.text Size: 116KB - Virtual size: 115KB

.data Size: 49KB - Virtual size: 49KB

.data Size: 31KB - Virtual size: 6.2MB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 116KB - Virtual size: 115KB

.data
Size: 49KB - Virtual size: 49KB

.data
Size: 31KB - Virtual size: 6.2MB

.rsrc
Size: 3KB - Virtual size: 2KB