596b28e262b723c38d100b1d4120b53f7eea14a1c14fcc91a6e0b02468840f0a

Sharing

Copy URL

Twitter E-mail

General

Target

596b28e262b723c38d100b1d4120b53f7eea14a1c14fcc91a6e0b02468840f0a
Size

196KB
MD5

00d76dc83b360062ce5994665dd7ac20
SHA1

99e02f7034c7f2ff7c4741fe806b7a5d1ce08a72
SHA256

596b28e262b723c38d100b1d4120b53f7eea14a1c14fcc91a6e0b02468840f0a
SHA512

8b0fc8d79000663b6acf0a220dff7504bb7b6c7df450c9862d14b242e1a3a025c1dc7845391ff5ab406b521f816be4a30ca591b5048a1b20fd503462fe70934d
SSDEEP

3072:TBbtEjVsD49AIDfeIWFRCHkLVvKKZMWjmn1f1kOVnvEHmUo99e9KHQ9gyvN89o:T0jVsEPDWdCSbMWjsmO939e9MQuyvUo

Score

N/A

Malware Config

Signatures

Files

596b28e262b723c38d100b1d4120b53f7eea14a1c14fcc91a6e0b02468840f0a
.exe windows x86

aaf355606087f3c19a2b44dddb3226df

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadIconW
EnableWindow
EndDialog
GetDlgItem
GetDlgItemTextA
GetParent
SetDlgItemTextW
GetWindowLongW
SendMessageW
SetFocus
InsertMenuItemW
RegisterClipboardFormatW
SystemParametersInfoW
LoadStringW
LoadBitmapW
GetDC
SetWindowLongW
SendDlgItemMessageW
ReleaseDC
WinHelpW
LoadCursorW
SetCursor
wsprintfW
LoadImageW
DialogBoxParamW
PostMessageW
SetWindowTextW
MessageBoxW

msvcrt

_wcsupr
wcschr
vswprintf
wcstoul
__dllonexit
_wcsicmp
wcscat
_onexit
wcslen
free
_adjust_fdiv
wcsrchr
_purecall
?terminate@@YAXXZ
_except_handler3
wcscmp
__RTDynamicCast
malloc
wcsstr
??1type_info@@UAE@XZ
??3@YAXPAX@Z
memmove
_initterm
mbstowcs
wcscpy
??2@YAPAXI@Z

kernel32

GetSystemTimeAsFileTime
LocalReAlloc
GetCurrentProcess
SetLastError
GetSystemWindowsDirectoryW
SetUnhandledExceptionFilter
lstrlenW
IsBadReadPtr
GetModuleHandleA
QueryPerformanceCounter
InterlockedIncrement
LoadLibraryW
GetEnvironmentStringsA
LocalFree
lstrcmpiW
MultiByteToWideChar
FormatMessageW
GetModuleFileNameW
InitializeCriticalSection
CloseHandle
GetACP
CreateFileW
GetComputerNameW
GetCPInfo
GlobalLock
OutputDebugStringA
GlobalFree
WideCharToMultiByte
GetLastError
GetTickCount
GetDateFormatW
FileTimeToLocalFileTime
RemoveDirectoryA
IsValidCodePage
GetStartupInfoA
GetProcAddress
lstrcpyW
GlobalAlloc
InterlockedDecrement
GlobalUnlock
OutputDebugStringW
DeleteCriticalSection
FileTimeToSystemTime

certcli

CARemoveCACertificateType
CAGetCertTypeKeySpec
CAFreeCertTypeExtensions
CAFindCertTypeByName
CASetCertTypeExtension
CASetCertTypeFlags
CASetCertTypeKeySpec
CACreateCertType
CACertTypeSetSecurity
CAAddCACertificateType
CAFreeCAProperty
CAFindByName
CACertTypeGetSecurity
CAEnumCertTypes
CACloseCertType
CASetCertTypeProperty
CAGetCertTypeProperty
CAGetCertTypePropertyEx
CACloseCA
CAUpdateCA
CAEnumNextCertType
CAUpdateCertType
CAGetCAProperty
CAGetCertTypeExtensions
CAGetCertTypeFlags
CAEnumCertTypesForCA
CAFreeCertTypeProperty

gdi32

CreateFontIndirectW
DeleteObject
GetDeviceCaps

comctl32

PropertySheetW
CreatePropertySheetPageW

advapi32

RegEnumKeyExW
RegOpenKeyExW
RegSetValueExW
RegQueryValueExW
RegDeleteKeyW
RegCreateKeyExW
RegDeleteValueW
RegCloseKey

shell32

ShellExecuteW
ShellExecuteExW

Sections

.code
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aaf355606087f3c19a2b44dddb3226df

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

certcli

gdi32

comctl32

advapi32

shell32

Sections

.code Size: 89KB - Virtual size: 89KB

.rdata Size: 103KB - Virtual size: 2.5MB

.rsrc Size: 2KB - Virtual size: 1KB

.code
Size: 89KB - Virtual size: 89KB

.rdata
Size: 103KB - Virtual size: 2.5MB

.rsrc
Size: 2KB - Virtual size: 1KB