981d427f73c8c143096f631ed57e4da7f953c60ac84d478182340a60500b7fd3

General

Target

981d427f73c8c143096f631ed57e4da7f953c60ac84d478182340a60500b7fd3
Size

64KB
MD5

21a44546c19b88d861df4ad5d655d8eb
SHA1

ef919181a0cdbb4eac27ef19d355f54b3a1d46bc
SHA256

981d427f73c8c143096f631ed57e4da7f953c60ac84d478182340a60500b7fd3
SHA512

5697799d38af054fc4703dfc8eb84ef9c810d51a24d66e82b7d4e51a4ae4e636f149b16136a8e583b3016cadf2980a650f06e64b7cec37292b29aa370cafae67
SSDEEP

1536:4DYB2mx+rAK9KuakjGjAcqH3nWVJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJ:4DYBwAK/alJO3uJJJJJJJJJJJJJJJJJK

Score

N/A

Malware Config

Signatures

Files

981d427f73c8c143096f631ed57e4da7f953c60ac84d478182340a60500b7fd3
.exe windows x86

5baf9cba05bda82849a590eb0d9f98b7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dsprop

FindSheet
ErrMsgParam
ErrMsg
CrackName

crypt32

CertDuplicateStore
CertCreateContext
CertFindExtension
CryptFindOIDInfo
CertSaveStore
CertNameToStrA
CryptEnumOIDInfo
CertAlgIdToOID
CertCreateCRLContext
CertFindCRLInStore
CertDuplicateCRLContext
CertGetNameStringA
CertFindAttribute
CertControlStore

kernel32

FindFirstFileW
FormatMessageA
CreateMutexA
GetDateFormatA
GetProcAddress
TlsGetValue
HeapAlloc
OpenMutexW
SetEnvironmentVariableW
SetErrorMode
DeleteFileA
GetCurrentDirectoryW
GetEnvironmentVariableA
GetLogicalDriveStringsA
CreateDirectoryA
GetModuleHandleA
WaitForSingleObject
CompareStringA
WriteConsoleW

esent

JetCloseDatabase
JetBeginTransaction
JetCloseTable

user32

SetFocus
LoadImageA
GetMessageA
DefDlgProcA
DrawTextA
GetKeyNameTextA
DrawIcon
PostMessageW
wsprintfW
PeekMessageW
LoadStringA

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5baf9cba05bda82849a590eb0d9f98b7

Headers

File Characteristics

Imports

dsprop

crypt32

kernel32

esent

user32

Sections

.text Size: 24KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 4KB

.rsrc Size: 24KB - Virtual size: 20KB

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 24KB - Virtual size: 20KB