03d0dd1eb558fbfab216214f16fe6b545485278cc920a80e230ea28a9b0fc1ff

Sharing

Copy URL Twitter E-mail

General

Target

03d0dd1eb558fbfab216214f16fe6b545485278cc920a80e230ea28a9b0fc1ff
Size

98KB
MD5

7df51c3777896940bd6e0cf3215ff98f
SHA1

60dc66675cb8921f3ffe67c3f3a0d2e95cac0dcd
SHA256

03d0dd1eb558fbfab216214f16fe6b545485278cc920a80e230ea28a9b0fc1ff
SHA512

9390ddb928fbadcd8e4e16a9696dac0d016e2bc3343c3c286aeb5e23359c480dc96ab559ef0834ab92386991fd71eab9f7bbb68d9f9019cd95ff2468f37db4fe
SSDEEP

1536:q7hrmy+zELY+kejqpbq6q1Ot1YUxr1EPWN1KMAzqoS1b6p6RgfKyeCk5/4:q5Z08yMx1OAOqPQg5u46RgfK55g

Score

N/A

Malware Config

Signatures

Files

03d0dd1eb558fbfab216214f16fe6b545485278cc920a80e230ea28a9b0fc1ff
.exe windows x86

78fddbdc43abbf9257cd84acd287e7b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CACreateCertType
CACertTypeGetSecurity
CAFreeCertTypeExtensions
CAEnumCertTypes
CAFindByName
CAEnumCertTypesForCA
CAFreeCertTypeProperty
CAGetCAProperty
CAEnumNextCertType
CAUpdateCA
CAGetCertTypeFlags
CAAddCACertificateType
CAGetCertTypeKeySpec
CACloseCertType
CAFreeCAProperty
CASetCertTypeExtension
CACertTypeSetSecurity
CASetCertTypeFlags
CASetCertTypeKeySpec
CAGetCertTypeProperty
CASetCertTypeProperty
CARemoveCACertificateType
CAFindCertTypeByName
CAUpdateCertType
CACloseCA
CAGetCertTypePropertyEx
CAGetCertTypeExtensions

msvcrt

__RTDynamicCast
_wcsicmp
wcstoul
wcschr
wcscpy
_wcsupr
_onexit
wcscat
??1type_info@@UAE@XZ
?terminate@@YAXXZ
wcslen
??2@YAPAXI@Z
_except_handler3
mbstowcs
free
memmove
wcsrchr
_initterm
_adjust_fdiv
wcscmp
wcsstr
__dllonexit
_purecall
??3@YAXPAX@Z
malloc
vswprintf

advapi32

RegDeleteKeyW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegEnumKeyExW
RegOpenKeyExW
RegSetValueExW
RegQueryValueExW

kernel32

IsBadReadPtr
FileTimeToLocalFileTime
DeleteCriticalSection
GetTickCount
GetEnvironmentStringsW
GetModuleFileNameW
IsValidCodePage
CloseHandle
CreateFileW
LocalFree
GetModuleHandleA
GetProcessId
LocalReAlloc
GetDateFormatW
GlobalFree
SetLastError
FormatMessageW
GlobalUnlock
GetACP
SetUnhandledExceptionFilter
OutputDebugStringA
GetSystemTimeAsFileTime
GetCurrentProcess
lstrcmpiW
GetComputerNameW
OutputDebugStringW
WideCharToMultiByte
GetStartupInfoA
InterlockedDecrement
GlobalLock
QueryPerformanceCounter
InitializeCriticalSection
RemoveDirectoryW
LoadLibraryW
GetEnvironmentStringsA
GetLastError
lstrcpyW
GlobalAlloc
lstrlenW
InterlockedIncrement
FileTimeToSystemTime
GetSystemWindowsDirectoryW

user32

SendMessageW
GetDlgItemTextA
LoadBitmapW
SystemParametersInfoW
GetWindowLongW
InsertMenuItemW
WinHelpW
SendDlgItemMessageW
EndDialog
GetParent
SetWindowTextW
LoadStringW
wsprintfW
LoadImageW
SetFocus
SetCursor
GetDC
PostMessageW
LoadCursorW
SetWindowLongW
RegisterClipboardFormatW
GetDlgItem
LoadIconW
DialogBoxParamW
EnableWindow
ReleaseDC
SetDlgItemTextW
MessageBoxW

comctl32

CreatePropertySheetPageW
PropertySheetW

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78fddbdc43abbf9257cd84acd287e7b5

Headers

File Characteristics

Imports

certcli

msvcrt

advapi32

kernel32

user32

comctl32

gdi32

Sections

.text Size: 43KB - Virtual size: 42KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 114KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 43KB - Virtual size: 42KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 114KB

.rsrc
Size: 24KB - Virtual size: 24KB