75fb1e9b7192c4044b2ba6285c2c38939d476f374b153a9b40d8e6135923b1d2

General

Target

75fb1e9b7192c4044b2ba6285c2c38939d476f374b153a9b40d8e6135923b1d2
Size

577KB
MD5

c63d9f1fb02efb27ac0806c99611e9b3
SHA1

1486afa761eda88a5de4cc684386df44cf802921
SHA256

75fb1e9b7192c4044b2ba6285c2c38939d476f374b153a9b40d8e6135923b1d2
SHA512

17c1eabe30dad7ccf8e117d0115f86c5f39f14eaf42c3fddc8bb496e8747882105594cb8a579a7a0ef0bb995975606e15406fef40f3dcff97489b1bf0d4865ef
SSDEEP

12288:Tvi6tZuqMCvHF9/eT9JFQA3R54kioED7nCnE:/tHMCvSRIS0HnCnE

Score

N/A

Malware Config

Signatures

Files

75fb1e9b7192c4044b2ba6285c2c38939d476f374b153a9b40d8e6135923b1d2
.exe windows x86

524e0c2fe486f5ab9e41601940bbbd1e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

UrlCanonicalizeA
UrlGetPartA
UrlHashA
PathCompactPathA
UrlIsOpaqueW
UrlIsA
UrlCreateFromPathA
UrlUnescapeA
UrlEscapeA
PathCombineA
UrlCombineA
UrlCompareA

crypt32

CertGetNameStringA
CertCreateContext
CertSaveStore
CertAlgIdToOID
CertDuplicateStore
CertCompareCertificate
CertNameToStrA
CertFreeCRLContext
CertDuplicateCRLContext
CertCreateCRLContext
CertCloseStore
CertFindChainInStore

kernel32

GetStringTypeA
CreateMutexA
GetCurrentDirectoryW
CompareStringW
GetCurrentProcess
GetModuleHandleA
FormatMessageW
FileTimeToSystemTime
TlsGetValue
FindResourceA
GetStdHandle
CreateSemaphoreA
SetVolumeLabelA
GetFullPathNameA
GetLocalTime
GetComputerNameW
GetProcAddress
FindFirstFileA
DeleteFileA
GetProcessHeap

user32

wsprintfA
IsCharLowerW
GetWindowTextA
SetFocus
CreateWindowExA
CharToOemA
LoadCursorA
LoadImageA
DialogBoxParamA
SetCursorPos

cfgmgr32

CMP_UnregisterNotification
CMP_Init_Detection
CMP_Report_LogOn
CM_Add_IDA

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 544KB - Virtual size: 628KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

524e0c2fe486f5ab9e41601940bbbd1e

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

crypt32

kernel32

user32

cfgmgr32

Sections

.text Size: 30KB - Virtual size: 29KB

.data Size: 2KB - Virtual size: 5KB

.rsrc Size: 544KB - Virtual size: 628KB

.text
Size: 30KB - Virtual size: 29KB

.data
Size: 2KB - Virtual size: 5KB

.rsrc
Size: 544KB - Virtual size: 628KB