cb1c24211a1c6c3d4a13bab15f86d85a3a86d1f88a973211c0e4f85d703de11f

Sharing

Copy URL Twitter E-mail

General

Target

cb1c24211a1c6c3d4a13bab15f86d85a3a86d1f88a973211c0e4f85d703de11f
Size

195KB
MD5

1f9bf0f44e8460783a84a7425b9d9360
SHA1

2fbfcda21da2816e61b2e3b0cc9e9c5a2ccc827a
SHA256

cb1c24211a1c6c3d4a13bab15f86d85a3a86d1f88a973211c0e4f85d703de11f
SHA512

1e96db8aeda017c58d223546493b2acc78f6cd466180996ca1300ccb4099738d1b20714d6a817ec70c89bcfe09a89472f1443bbe257839beb1d87e9740874d28
SSDEEP

6144:e+MOjf0xmFxcvhKGE/msKcAJYirvbp/uuW0nIgUgMRIV+:o0Fo639iHRlnIHPmV+

Score

N/A

Malware Config

Signatures

Files

cb1c24211a1c6c3d4a13bab15f86d85a3a86d1f88a973211c0e4f85d703de11f
.exe windows x86

3de82d459154e22900303769828dd3b3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SystemParametersInfoW
GetDlgItemTextA
ReleaseDC
SetWindowTextW
LoadCursorW
EnableWindow
GetWindowLongW
SetDlgItemTextW
EndDialog
SetWindowLongW
LoadIconW
wsprintfW
SetFocus
GetDlgItem
RegisterClipboardFormatW
LoadImageW
SendMessageW
DialogBoxParamW
LoadStringW
LoadBitmapW
GetDC
SendDlgItemMessageW
PostMessageW
WinHelpW
GetParent
MessageBoxW
SetCursor
InsertMenuItemW

msvcrt

wcsstr
wcsrchr
_wcsupr
wcschr
_adjust_fdiv
wcscmp
vswprintf
_purecall
wcscpy
_initterm
wcstoul
free
wcslen
??2@YAPAXI@Z
_wcsicmp
malloc
_onexit
_except_handler3
__RTDynamicCast
__dllonexit
wcscat
?terminate@@YAXXZ
mbstowcs
??1type_info@@UAE@XZ
??3@YAXPAX@Z
memmove

certcli

CARemoveCACertificateType
CAFreeCertTypeProperty
CASetCertTypeKeySpec
CACertTypeGetSecurity
CASetCertTypeProperty
CAGetCertTypeProperty
CAFreeCAProperty
CACreateCertType
CAFreeCertTypeExtensions
CAEnumCertTypesForCA
CAGetCertTypeExtensions
CAAddCACertificateType
CACloseCA
CACloseCertType
CACertTypeSetSecurity
CAUpdateCertType
CAGetCertTypeKeySpec
CAGetCertTypePropertyEx
CAGetCertTypeFlags
CAEnumCertTypes
CASetCertTypeExtension
CASetCertTypeFlags
CAFindByName
CAGetCAProperty
CAUpdateCA
CAFindCertTypeByName
CAEnumNextCertType

kernel32

InterlockedIncrement
RemoveDirectoryA
SetLastError
GlobalUnlock
GlobalAlloc
WideCharToMultiByte
lstrlenW
GetComputerNameW
IsValidCodePage
QueryPerformanceCounter
CreateFileW
lstrcmpiW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetEnvironmentStringsA
GetTickCount
GetModuleHandleA
LocalReAlloc
InitializeCriticalSection
OutputDebugStringW
InterlockedDecrement
GetCPInfo
GetProcAddress
LoadLibraryW
GetCurrentProcess
GetModuleFileNameW
LocalFree
GetStartupInfoA
GetSystemTimeAsFileTime
CloseHandle
OutputDebugStringA
DeleteCriticalSection
GetACP
FormatMessageW
GlobalLock
IsBadReadPtr
GetLastError
GetDateFormatW
GetSystemWindowsDirectoryW
GlobalFree
SetUnhandledExceptionFilter
lstrcpyW

advapi32

RegQueryValueExW
RegEnumKeyExW
RegCloseKey
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteValueW

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

comctl32

PropertySheetW
CreatePropertySheetPageW

shell32

ShellExecuteExW
ShellExecuteW

Sections

.code
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3de82d459154e22900303769828dd3b3

Headers

File Characteristics

Imports

user32

msvcrt

certcli

kernel32

advapi32

gdi32

comctl32

shell32

Sections

.code Size: 88KB - Virtual size: 88KB

.rdata Size: 103KB - Virtual size: 2.5MB

.rsrc Size: 1KB - Virtual size: 1KB

.code
Size: 88KB - Virtual size: 88KB

.rdata
Size: 103KB - Virtual size: 2.5MB

.rsrc
Size: 1KB - Virtual size: 1KB