dafd1775ee5f50845ea8fa5d9ef9bbf41ccfd9efb4f716af2e67c6486cea0353

Sharing

Copy URL

Twitter E-mail

General

Target

dafd1775ee5f50845ea8fa5d9ef9bbf41ccfd9efb4f716af2e67c6486cea0353
Size

198KB
MD5

3a7a2141168b55d9008f09522d113fe0
SHA1

d39ae509e419a6536245e2ecc37957b1501a3ea8
SHA256

dafd1775ee5f50845ea8fa5d9ef9bbf41ccfd9efb4f716af2e67c6486cea0353
SHA512

7561a4c0be26fd5046694af6a6d17f9cc8e52e190e7b869afd73f91d103493f446303754b0727377aa9b53cfae0a505a23c152bd67d010804e6a068d15287171
SSDEEP

6144:zops+8+Q8PpB4tpOzQRnzy8ee0UPKxNkms:zSs+TPo9nWBe0UPKk

Score

N/A

Malware Config

Signatures

Files

dafd1775ee5f50845ea8fa5d9ef9bbf41ccfd9efb4f716af2e67c6486cea0353
.exe windows x86

2f71cec56ca9eda2a3f0c49bf6442950

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
InitializeCriticalSection
OutputDebugStringW
lstrcpyW
GlobalUnlock
GlobalLock
DeleteFileA
InterlockedIncrement
IsBadReadPtr
GlobalAlloc
IsValidCodePage
lstrcmpiW
InterlockedDecrement
GetSystemTimeAsFileTime
GetEnvironmentStringsA
DeleteCriticalSection
GetDateFormatW
WideCharToMultiByte
GetStartupInfoA
LoadLibraryW
FileTimeToSystemTime
GetLastError
FileTimeToLocalFileTime
MultiByteToWideChar
GetComputerNameW
OutputDebugStringA
GetProcAddress
GetSystemWindowsDirectoryW
SetUnhandledExceptionFilter
GlobalFree
QueryPerformanceCounter
CreateFileW
GetModuleFileNameW
LocalReAlloc
GetCPInfo
FormatMessageW
lstrlenW
GetModuleHandleA
LocalFree
CloseHandle
GetCurrentProcess
SetLastError

msvcrt

wcsrchr
mbstowcs
wcscmp
_purecall
free
_wcsupr
_wcsicmp
??2@YAPAXI@Z
?terminate@@YAXXZ
??1type_info@@UAE@XZ
_initterm
wcstoul
_onexit
_except_handler3
malloc
__RTDynamicCast
memmove
wcschr
__dllonexit
_adjust_fdiv
wcscat
wcsstr
vswprintf
wcscpy
??3@YAXPAX@Z
wcslen

certcli

CAGetCertTypeExtensions
CAUpdateCertType
CASetCertTypeProperty
CAEnumCertTypes
CASetCertTypeKeySpec
CAFindCertTypeByName
CASetCertTypeExtension
CAUpdateCA
CAGetCertTypeKeySpec
CAFreeCertTypeExtensions
CAFindByName
CAEnumCertTypesForCA
CACertTypeSetSecurity
CAGetCertTypePropertyEx
CACreateCertType
CACloseCA
CARemoveCACertificateType
CAGetCertTypeFlags
CAFreeCertTypeProperty
CACloseCertType
CAEnumNextCertType
CAGetCertTypeProperty
CAGetCAProperty
CAFreeCAProperty
CASetCertTypeFlags
CACertTypeGetSecurity
CAAddCACertificateType

comctl32

PropertySheetW
CreatePropertySheetPageW

user32

GetDC
wsprintfW
ReleaseDC
SetDlgItemTextW
LoadIconW
LoadCursorW
MessageBoxW
InsertMenuItemW
EndDialog
WinHelpW
LoadBitmapW
DialogBoxParamW
GetParent
GetDlgItem
RegisterClipboardFormatW
SetWindowTextW
SetCursor
GetDlgItemTextA
SystemParametersInfoW
LoadImageW
SetFocus
SendDlgItemMessageW
GetWindowLongW
PostMessageW
LoadStringW
SetWindowLongW
SendMessageW
EnableWindow

gdi32

DeleteObject
CreateFontIndirectW
GetDeviceCaps

advapi32

RegCreateKeyExW
RegOpenKeyExW
RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW
RegSetValueExW
RegCloseKey
RegDeleteValueW

ole32

CoTaskMemFree
CoTaskMemAlloc
ReleaseStgMedium
StringFromCLSID
CoCreateInstanceEx
GetHGlobalFromStream
CoSetProxyBlanket
StringFromGUID2
CreateStreamOnHGlobal

shell32

ShellExecuteW
ShellExecuteExW

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hdata
Size: 78KB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f71cec56ca9eda2a3f0c49bf6442950

Headers

File Characteristics

Imports

kernel32

msvcrt

certcli

comctl32

user32

gdi32

advapi32

ole32

shell32

Sections

.text Size: 69KB - Virtual size: 69KB

.rdata Size: 45KB - Virtual size: 45KB

.hdata Size: 78KB - Virtual size: 3.2MB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 69KB - Virtual size: 69KB

.rdata
Size: 45KB - Virtual size: 45KB

.hdata
Size: 78KB - Virtual size: 3.2MB

.rsrc
Size: 3KB - Virtual size: 2KB