786b866b76112478dd9faa4835d231a00d935e00ee2d41f0dda228330d2ea6a0

Sharing

Copy URL Twitter E-mail

General

Target

786b866b76112478dd9faa4835d231a00d935e00ee2d41f0dda228330d2ea6a0
Size

97KB
MD5

5904d45c6268be438796ce48fb488a6c
SHA1

fadb62c5704aa12c0f1d41c0d1854c36904a43a2
SHA256

786b866b76112478dd9faa4835d231a00d935e00ee2d41f0dda228330d2ea6a0
SHA512

fa5407f21e9c1a58dd8cdd3cc88da44e786f575e0accfc651495f0356f70b1e1d1db09b880ed1aa62c33fecf1332fb6e205cd7cebdffb5c633b047d155ae1371
SSDEEP

1536:VkxIMlPdH/WgBDMTsDf+ljJWtV9LgA5zPa3vcTa3Py2NfUiZzt5gkaDzo:VkxqkWxJWtVD5zwQO/Nf5t5lm

Score

N/A

Malware Config

Signatures

Files

786b866b76112478dd9faa4835d231a00d935e00ee2d41f0dda228330d2ea6a0
.exe windows x86

593512064294953011f2b9fb24e4a537

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CACloseCA
CASetCertTypeExtension
CAEnumCertTypesForCA
CAFreeCertTypeExtensions
CASetCertTypeKeySpec
CAGetCertTypeProperty
CAGetCAProperty
CASetCertTypeFlags
CAFreeCertTypeProperty
CAEnumCertTypes
CAGetCertTypeFlags
CACreateCertType
CAUpdateCertType
CAGetCertTypePropertyEx
CAFindByName
CAFreeCAProperty
CAGetCertTypeKeySpec
CAFindCertTypeByName
CASetCertTypeProperty
CACloseCertType
CAAddCACertificateType
CAGetCertTypeExtensions
CAUpdateCA
CARemoveCACertificateType
CACertTypeGetSecurity
CAEnumNextCertType
CACertTypeSetSecurity

advapi32

RegDeleteValueW
RegCreateKeyExW
RegCloseKey
RegEnumKeyExW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW

kernel32

OutputDebugStringW
GetSystemWindowsDirectoryW
GetCurrentProcess
GetModuleFileNameW
WideCharToMultiByte
GetComputerNameW
FormatMessageW
GetDateFormatW
GetProcessId
GetLastError
GetModuleHandleA
GetEnvironmentStringsW
SetLastError
CloseHandle
OutputDebugStringA
GetSystemTimeAsFileTime
LoadLibraryW
RemoveDirectoryW
GlobalLock
LocalFree
InterlockedIncrement
lstrcmpiW
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
DeleteCriticalSection
IsBadReadPtr
InitializeCriticalSection
FileTimeToLocalFileTime
GlobalFree
InterlockedDecrement
FileTimeToSystemTime
lstrlenW
GlobalAlloc
GlobalUnlock
lstrcpyW
IsValidCodePage
CreateFileW
GetEnvironmentStringsA
GetACP
LocalReAlloc
GetStartupInfoA

msvcrt

malloc
wcschr
__RTDynamicCast
mbstowcs
?terminate@@YAXXZ
_initterm
??2@YAPAXI@Z
_wcsupr
wcscmp
_purecall
wcscpy
_wcsicmp
_adjust_fdiv
??1type_info@@UAE@XZ
vswprintf
wcstoul
free
_onexit
memmove
wcsrchr
__dllonexit
??3@YAXPAX@Z
wcscat
wcsstr
wcslen
_except_handler3

comctl32

CreatePropertySheetPageW
PropertySheetW

user32

WinHelpW
SendDlgItemMessageW
LoadImageW
GetDlgItem
LoadStringW
MessageBoxW
EnableWindow
GetParent
SetCursor
GetDlgItemTextA
SystemParametersInfoW
LoadCursorW
SetFocus
LoadBitmapW
RegisterClipboardFormatW
DialogBoxParamW
wsprintfW
EndDialog
InsertMenuItemW
SendMessageW
SetWindowTextW
SetWindowLongW
GetWindowLongW
PostMessageW
ReleaseDC
GetDC
SetDlgItemTextW
LoadIconW

gdi32

DeleteObject
GetDeviceCaps
CreateFontIndirectW

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

593512064294953011f2b9fb24e4a537

Headers

File Characteristics

Imports

certcli

advapi32

kernel32

msvcrt

comctl32

user32

gdi32

Sections

.text Size: 43KB - Virtual size: 42KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 67KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 43KB - Virtual size: 42KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 67KB

.rsrc
Size: 23KB - Virtual size: 23KB