8cc6a43046003cb95a28359ccbd03e188cf26ba6bb71842d944f414c8b704f6b

Sharing

Copy URL Twitter E-mail

General

Target

8cc6a43046003cb95a28359ccbd03e188cf26ba6bb71842d944f414c8b704f6b
Size

195KB
MD5

1aaf1cc4acb81e4f25843a4c3a59aae0
SHA1

e70a3c3ea81277242b8ca9a65882aad815fb2cc9
SHA256

8cc6a43046003cb95a28359ccbd03e188cf26ba6bb71842d944f414c8b704f6b
SHA512

d40111201ad3fa46fd7177d2e7f643501b301a0a6684680bed71c1451d695eb78c52e510407b8363fd73b44dcdc96b32dcd36539ac6bf4eef104066c6682ca00
SSDEEP

6144:e+MOjf0xmFxcvhKGE/msKcAJYirvbp/uuW0nIgUgMRIV+:o0Fo639iHRlnIHPmV+

Score

N/A

Malware Config

Signatures

Files

8cc6a43046003cb95a28359ccbd03e188cf26ba6bb71842d944f414c8b704f6b
.exe windows x86

3de82d459154e22900303769828dd3b3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SystemParametersInfoW
GetDlgItemTextA
ReleaseDC
SetWindowTextW
LoadCursorW
EnableWindow
GetWindowLongW
SetDlgItemTextW
EndDialog
SetWindowLongW
LoadIconW
wsprintfW
SetFocus
GetDlgItem
RegisterClipboardFormatW
LoadImageW
SendMessageW
DialogBoxParamW
LoadStringW
LoadBitmapW
GetDC
SendDlgItemMessageW
PostMessageW
WinHelpW
GetParent
MessageBoxW
SetCursor
InsertMenuItemW

msvcrt

wcsstr
wcsrchr
_wcsupr
wcschr
_adjust_fdiv
wcscmp
vswprintf
_purecall
wcscpy
_initterm
wcstoul
free
wcslen
??2@YAPAXI@Z
_wcsicmp
malloc
_onexit
_except_handler3
__RTDynamicCast
__dllonexit
wcscat
?terminate@@YAXXZ
mbstowcs
??1type_info@@UAE@XZ
??3@YAXPAX@Z
memmove

certcli

CARemoveCACertificateType
CAFreeCertTypeProperty
CASetCertTypeKeySpec
CACertTypeGetSecurity
CASetCertTypeProperty
CAGetCertTypeProperty
CAFreeCAProperty
CACreateCertType
CAFreeCertTypeExtensions
CAEnumCertTypesForCA
CAGetCertTypeExtensions
CAAddCACertificateType
CACloseCA
CACloseCertType
CACertTypeSetSecurity
CAUpdateCertType
CAGetCertTypeKeySpec
CAGetCertTypePropertyEx
CAGetCertTypeFlags
CAEnumCertTypes
CASetCertTypeExtension
CASetCertTypeFlags
CAFindByName
CAGetCAProperty
CAUpdateCA
CAFindCertTypeByName
CAEnumNextCertType

kernel32

InterlockedIncrement
RemoveDirectoryA
SetLastError
GlobalUnlock
GlobalAlloc
WideCharToMultiByte
lstrlenW
GetComputerNameW
IsValidCodePage
QueryPerformanceCounter
CreateFileW
lstrcmpiW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetEnvironmentStringsA
GetTickCount
GetModuleHandleA
LocalReAlloc
InitializeCriticalSection
OutputDebugStringW
InterlockedDecrement
GetCPInfo
GetProcAddress
LoadLibraryW
GetCurrentProcess
GetModuleFileNameW
LocalFree
GetStartupInfoA
GetSystemTimeAsFileTime
CloseHandle
OutputDebugStringA
DeleteCriticalSection
GetACP
FormatMessageW
GlobalLock
IsBadReadPtr
GetLastError
GetDateFormatW
GetSystemWindowsDirectoryW
GlobalFree
SetUnhandledExceptionFilter
lstrcpyW

advapi32

RegQueryValueExW
RegEnumKeyExW
RegCloseKey
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteValueW

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

comctl32

PropertySheetW
CreatePropertySheetPageW

shell32

ShellExecuteExW
ShellExecuteW

Sections

.code
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3de82d459154e22900303769828dd3b3

Headers

File Characteristics

Imports

user32

msvcrt

certcli

kernel32

advapi32

gdi32

comctl32

shell32

Sections

.code Size: 88KB - Virtual size: 88KB

.rdata Size: 103KB - Virtual size: 2.5MB

.rsrc Size: 1KB - Virtual size: 1KB

.code
Size: 88KB - Virtual size: 88KB

.rdata
Size: 103KB - Virtual size: 2.5MB

.rsrc
Size: 1KB - Virtual size: 1KB