de5a4b1a7bb9094351d7e3db810257ddcbfde2445777f20974c6fdcbf59eaeff

Sharing

Copy URL Twitter E-mail

General

Target

de5a4b1a7bb9094351d7e3db810257ddcbfde2445777f20974c6fdcbf59eaeff
Size

97KB
MD5

b4750e70114d05e03b4cf7b4ed6888c6
SHA1

058db58042348f983bdefca135fae67ed4c2d365
SHA256

de5a4b1a7bb9094351d7e3db810257ddcbfde2445777f20974c6fdcbf59eaeff
SHA512

65a3dcf62c42d6f0b55a4da1249ebcff7501906d7e06b76983ebe13c38d4f36481af3e2411a8a10925af4c2884ad2cccdebc159317c0872173de7c215acc8532
SSDEEP

1536:b/AGVYJA8gBax//zwNihcRJ4EvEobIceXb/s8tNvc1exSOuacc2+J5lbmBtMIHoD:jAt2B+z+WcEEXbYbj0cTl04lbmjbAj

Score

N/A

Malware Config

Signatures

Files

de5a4b1a7bb9094351d7e3db810257ddcbfde2445777f20974c6fdcbf59eaeff
.exe windows x86

2a11b8a6f3d5a8b710383e39d9e0e5b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAGetCertTypePropertyEx
CAGetCertTypeExtensions
CACloseCertType
CAFindCertTypeByName
CAFreeCAProperty
CACertTypeSetSecurity
CAUpdateCertType
CACloseCA
CAGetCertTypeFlags
CAFindByName
CARemoveCACertificateType
CAFreeCertTypeProperty
CAEnumCertTypes
CASetCertTypeProperty
CASetCertTypeKeySpec
CASetCertTypeExtension
CACertTypeGetSecurity
CAGetCertTypeProperty
CAEnumCertTypesForCA
CAUpdateCA
CASetCertTypeFlags
CAGetCAProperty
CAFreeCertTypeExtensions
CAGetCertTypeKeySpec
CACreateCertType
CAAddCACertificateType
CAEnumNextCertType

kernel32

FileTimeToLocalFileTime
InterlockedDecrement
GlobalAlloc
GlobalUnlock
LoadLibraryW
GetStartupInfoA
InterlockedIncrement
LocalReAlloc
InitializeCriticalSection
GetEnvironmentStringsA
SetUnhandledExceptionFilter
GetLastError
CreateFileW
GetModuleFileNameW
GetComputerNameW
FormatMessageW
lstrcmpiW
IsValidCodePage
OutputDebugStringW
RemoveDirectoryW
QueryPerformanceCounter
LocalFree
WideCharToMultiByte
GetModuleHandleA
GetTickCount
DeleteCriticalSection
GlobalLock
GetDateFormatW
IsBadReadPtr
GetEnvironmentStringsW
FileTimeToSystemTime
OutputDebugStringA
lstrlenW
GetProcessId
GetSystemWindowsDirectoryW
GetACP
GlobalFree
SetLastError
lstrcpyW
CloseHandle
GetCurrentProcess
GetSystemTimeAsFileTime

msvcrt

memmove
wcscmp
??1type_info@@UAE@XZ
?terminate@@YAXXZ
wcschr
vswprintf
wcsstr
??3@YAXPAX@Z
_initterm
??2@YAPAXI@Z
wcscpy
__RTDynamicCast
_onexit
_wcsicmp
mbstowcs
wcslen
__dllonexit
wcscat
wcstoul
wcsrchr
free
_wcsupr
_purecall
_except_handler3
malloc
_adjust_fdiv

user32

SetFocus
EndDialog
MessageBoxW
SetDlgItemTextW
wsprintfW
LoadCursorW
SendMessageW
LoadStringW
ReleaseDC
SendDlgItemMessageW
WinHelpW
InsertMenuItemW
GetDlgItemTextA
DialogBoxParamW
LoadIconW
LoadBitmapW
LoadImageW
SetWindowLongW
SetWindowTextW
GetDlgItem
GetDC
GetParent
SetCursor
RegisterClipboardFormatW
GetWindowLongW
PostMessageW
SystemParametersInfoW
EnableWindow

advapi32

RegSetValueExW
RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegDeleteKeyW
RegCreateKeyExW

gdi32

DeleteObject
CreateFontIndirectW
GetDeviceCaps

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a11b8a6f3d5a8b710383e39d9e0e5b3

Headers

File Characteristics

Imports

certcli

kernel32

msvcrt

user32

advapi32

gdi32

comctl32

Sections

.text Size: 43KB - Virtual size: 43KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 81KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 43KB - Virtual size: 43KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 81KB

.rsrc
Size: 23KB - Virtual size: 22KB