b2bd614bf1cef6df9fdfaeef6cc50a2bf3f17e6171dc9d0b750a78a2f033da70

Sharing

Copy URL Twitter E-mail

General

Target

b2bd614bf1cef6df9fdfaeef6cc50a2bf3f17e6171dc9d0b750a78a2f033da70
Size

99KB
MD5

d66bd367286f5e06f1c796207eb47650
SHA1

56386901b69ff91f8c59ecceec8f483c4d98a6b3
SHA256

b2bd614bf1cef6df9fdfaeef6cc50a2bf3f17e6171dc9d0b750a78a2f033da70
SHA512

63918f1c0bad1856be2456886c07294c5f8370c6adef69aff8088213a369d9b1890620a081eed51fe2a59ba2093f960780e8c74dd005136db9322cec241e8788
SSDEEP

1536:1tfjZ16irUUwIt19J+Qa+A/Fie/iu2u0AQnYYJz6SMNo3is:/jZ16irlpbUQO8xu2u6/Jz6S+oy

Score

N/A

Malware Config

Signatures

Files

b2bd614bf1cef6df9fdfaeef6cc50a2bf3f17e6171dc9d0b750a78a2f033da70
.exe windows x86

bb92825472c631fbdbde1a0c9432d662

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExW
RegDeleteKeyW
RegOpenKeyExW
RegEnumKeyExW
RegQueryValueExW
RegCloseKey
RegDeleteValueW
RegSetValueExW

kernel32

FormatMessageW
GetStartupInfoA
lstrcmpiW
WideCharToMultiByte
GetACP
CreateFileW
GlobalUnlock
GetModuleHandleA
FileTimeToLocalFileTime
GetLastError
RemoveDirectoryA
GlobalLock
lstrcpyW
GetSystemWindowsDirectoryW
FileTimeToSystemTime
SetUnhandledExceptionFilter
GetDateFormatW
GetSystemTimeAsFileTime
GetCurrentProcess
LocalReAlloc
QueryPerformanceCounter
GetSystemDefaultLangID
lstrlenW
GetModuleFileNameW
InterlockedDecrement
CloseHandle
LoadLibraryW
GlobalAlloc
GlobalFree
IsBadReadPtr
DeleteCriticalSection
InterlockedIncrement
GetEnvironmentStringsW
SetLastError
OutputDebugStringW
InitializeCriticalSection
GetComputerNameW
GetTickCount
LocalFree
OutputDebugStringA

gdi32

GetDeviceCaps
DeleteObject
CreateFontIndirectW

user32

SetWindowLongW
GetDC
LoadIconW
SendDlgItemMessageW
SendMessageW
SetDlgItemTextW
LoadCursorW
LoadImageW
GetDlgItem
SetCursor
InsertMenuItemW
RegisterClipboardFormatW
GetWindowLongW
GetDlgItemTextA
ReleaseDC
EndDialog
LoadBitmapW
MessageBoxW
SystemParametersInfoW
WinHelpW
PostMessageW
GetParent
SetFocus
SetWindowTextW
wsprintfW
DialogBoxParamW
LoadStringW
EnableWindow

certcli

CAGetCertTypeProperty
CACloseCA
CAEnumCertTypesForCA
CASetCertTypeProperty
CAFreeCAProperty
CAUpdateCertType
CACertTypeGetSecurity
CASetCertTypeKeySpec
CAFreeCertTypeProperty
CAAddCACertificateType
CAFindCertTypeByName
CAGetCertTypeFlags
CASetCertTypeFlags
CACloseCertType
CAGetCAProperty
CACertTypeSetSecurity
CAGetCertTypePropertyEx
CAUpdateCA
CARemoveCACertificateType
CAFreeCertTypeExtensions
CAGetCertTypeExtensions
CASetCertTypeExtension
CAEnumCertTypes
CAGetCertTypeKeySpec
CAEnumNextCertType
CAFindByName
CACreateCertType

msvcrt

??2@YAPAXI@Z
?terminate@@YAXXZ
_adjust_fdiv
_wcsupr
wcsrchr
__dllonexit
free
mbstowcs
??1type_info@@UAE@XZ
wcschr
_except_handler3
_initterm
wcslen
_wcsicmp
wcsstr
__RTDynamicCast
wcscat
memmove
??3@YAXPAX@Z
_purecall
wcscmp
_onexit
malloc
vswprintf
wcscpy
wcstoul

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb92825472c631fbdbde1a0c9432d662

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

certcli

msvcrt

comctl32

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 70KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 70KB

.rsrc
Size: 23KB - Virtual size: 22KB