18d8672abba47ee42a9fe0c058b5f97d266c4be7ddd7145dec07b49b6da3404a

Sharing

Copy URL

Twitter E-mail

General

Target

18d8672abba47ee42a9fe0c058b5f97d266c4be7ddd7145dec07b49b6da3404a
Size

885KB
MD5

6f66e4e71b2bb37e3eef8694887a3627
SHA1

fcf56d725394407e91fc87e523d4481d5dd75581
SHA256

18d8672abba47ee42a9fe0c058b5f97d266c4be7ddd7145dec07b49b6da3404a
SHA512

ab4add73e82e4d76f9514a21a98cac71ee0dff76c92cb964397a43c669be35fb635467bf0ecd7cb9d1617d1aa0ee4f210d1f97818c9eb5aff3890f686ab87563
SSDEEP

24576:PKVCJ71JNq8DtrbfCxzRxcrAMLyZJeyFg3ze9RwlKR:PKVCJJS8Dt6x3crAMOZJrFg3zDlQ

Score

N/A

Malware Config

Signatures

Files

18d8672abba47ee42a9fe0c058b5f97d266c4be7ddd7145dec07b49b6da3404a
.exe windows x86

2a6148b395f4601f09a28a266110843e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcslen
mbstowcs
?terminate@@YAXXZ
wcsrchr
memmove
wcsstr
_wcsupr
_initterm
__RTDynamicCast
??2@YAPAXI@Z
??1type_info@@UAE@XZ
_wcsicmp
wcschr
wcscmp
wcscat
free
__dllonexit
_purecall
wcstoul
_except_handler3
_onexit
wcscpy
_adjust_fdiv
??3@YAXPAX@Z
vswprintf
malloc

kernel32

lstrcpyW
GlobalAlloc
FormatMessageW
GetStartupInfoA
GetSystemTimeAsFileTime
CloseHandle
GetLastError
InterlockedIncrement
LocalFree
SetUnhandledExceptionFilter
GetProcAddress
GetACP
GetCurrentProcess
GetTickCount
GetModuleFileNameW
FileTimeToSystemTime
CreateFileW
GetComputerNameW
lstrlenW
InitializeCriticalSection
SetLastError
GlobalFree
IsValidCodePage
WideCharToMultiByte
GetSystemWindowsDirectoryW
QueryPerformanceCounter
FileTimeToLocalFileTime
LoadLibraryW
GetEnvironmentStringsA
InterlockedDecrement
LocalReAlloc
DeleteCriticalSection
OutputDebugStringA
RemoveDirectoryA
GlobalUnlock
GlobalLock
GetDateFormatW
IsBadReadPtr
OutputDebugStringW
GetModuleHandleA
lstrcmpiW

certcli

CAEnumNextCertType
CASetCertTypeFlags
CACloseCertType
CAFreeCertTypeExtensions
CAEnumCertTypes
CARemoveCACertificateType
CAFreeCAProperty
CAGetCertTypePropertyEx
CACloseCA
CAGetCertTypeKeySpec
CASetCertTypeKeySpec
CACertTypeSetSecurity
CACreateCertType
CASetCertTypeProperty
CAGetCAProperty
CAGetCertTypeExtensions
CAFindByName
CAGetCertTypeFlags
CAFindCertTypeByName
CAAddCACertificateType
CAUpdateCertType
CAFreeCertTypeProperty
CAUpdateCA
CASetCertTypeExtension
CAGetCertTypeProperty
CAEnumCertTypesForCA
CACertTypeGetSecurity

user32

GetWindowLongW
GetParent
SetFocus
LoadStringW
SendDlgItemMessageW
InsertMenuItemW
LoadImageW
DialogBoxParamW
wsprintfW
SystemParametersInfoW
LoadBitmapW
LoadIconW
MessageBoxW
ReleaseDC
PostMessageW
GetDlgItemTextA
RegisterClipboardFormatW
SetWindowLongW
EnableWindow
SendMessageW
LoadCursorW
GetDlgItem
SetDlgItemTextW
GetDC
SetWindowTextW
WinHelpW
EndDialog
SetCursor

comctl32

CreatePropertySheetPageW
PropertySheetW

advapi32

RegEnumKeyExW
RegCreateKeyExW
RegDeleteValueW
RegSetValueExW
RegCloseKey
RegOpenKeyExW
RegDeleteKeyW
RegQueryValueExW

gdi32

CreateFontIndirectW
GetDeviceCaps
DeleteObject

Sections

.text
Size: 419KB - Virtual size: 418KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 188KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a6148b395f4601f09a28a266110843e

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

certcli

user32

comctl32

advapi32

gdi32

Sections

.text Size: 419KB - Virtual size: 418KB

.rdata Size: 141KB - Virtual size: 140KB

.data Size: 188KB - Virtual size: 1.7MB

.rsrc Size: 135KB - Virtual size: 134KB

.reloc Size: 1024B - Virtual size: 728B

.text
Size: 419KB - Virtual size: 418KB

.rdata
Size: 141KB - Virtual size: 140KB

.data
Size: 188KB - Virtual size: 1.7MB

.rsrc
Size: 135KB - Virtual size: 134KB

.reloc
Size: 1024B - Virtual size: 728B