c9a5db1692d97b0e29796279db432174d657b6473c4daedcedd81c5861371eef

Sharing

Copy URL Twitter E-mail

General

Target

c9a5db1692d97b0e29796279db432174d657b6473c4daedcedd81c5861371eef
Size

99KB
MD5

f3d0d64679a5fc742a298266d72df1f2
SHA1

5c9bbdd27f89f3040859eed409f867000948f3d1
SHA256

c9a5db1692d97b0e29796279db432174d657b6473c4daedcedd81c5861371eef
SHA512

f7e89320e00d6b67570c199b552ed2c6184fa459b3ec4090422e33bad05771f7223f730cbaa30852629c9b1825fe3372e31f3a1f20008c87b43a66273e2ad965
SSDEEP

1536:nSDR1XxzEu/SFq/0tI2rrYCOLHDpyfNQwkvAkzxnjFUK/AjONQwNmZbxV7yFYEgO:noqu/SFqctkRHVyfNWnTIjONvCbiKE

Score

N/A

Malware Config

Signatures

Files

c9a5db1692d97b0e29796279db432174d657b6473c4daedcedd81c5861371eef
.exe windows x86

69346fdb66b49a7ebb89ce096417ad9c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetFocus
EnableWindow
GetWindowLongW
GetDlgItemTextA
SetDlgItemTextW
PostMessageW
wsprintfW
LoadCursorW
DialogBoxParamW
SystemParametersInfoW
LoadStringW
InsertMenuItemW
LoadBitmapW
GetParent
SetWindowLongW
RegisterClipboardFormatW
LoadIconW
SendDlgItemMessageW
SetWindowTextW
ReleaseDC
EndDialog
MessageBoxW
LoadImageW
SetCursor
WinHelpW
SendMessageW
GetDlgItem
GetDC

kernel32

OutputDebugStringW
GlobalUnlock
GetProcessId
QueryPerformanceCounter
GetComputerNameW
IsBadReadPtr
SetLastError
GetEnvironmentStringsA
GetTickCount
lstrcpyW
WideCharToMultiByte
GetEnvironmentStringsW
GetSystemWindowsDirectoryW
GetSystemTimeAsFileTime
OutputDebugStringA
lstrlenW
GlobalFree
GetCurrentProcess
InterlockedIncrement
GetModuleFileNameW
LocalFree
LocalReAlloc
GetDateFormatW
GlobalLock
FileTimeToSystemTime
GlobalAlloc
InitializeCriticalSection
IsValidCodePage
GetACP
GetLastError
GetModuleHandleA
lstrcmpiW
LoadLibraryW
GetStartupInfoA
FileTimeToLocalFileTime
CreateFileW
DeleteCriticalSection
SetUnhandledExceptionFilter
FormatMessageW
RemoveDirectoryW
InterlockedDecrement
CloseHandle

advapi32

RegSetValueExW
RegDeleteValueW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
RegCreateKeyExW
RegEnumKeyExW

certcli

CAGetCertTypeExtensions
CAFreeCertTypeProperty
CAGetCAProperty
CAGetCertTypePropertyEx
CAGetCertTypeProperty
CACertTypeGetSecurity
CASetCertTypeProperty
CAEnumCertTypesForCA
CAFindCertTypeByName
CASetCertTypeExtension
CAGetCertTypeFlags
CAFreeCertTypeExtensions
CAAddCACertificateType
CACreateCertType
CARemoveCACertificateType
CASetCertTypeKeySpec
CAUpdateCertType
CACloseCA
CAGetCertTypeKeySpec
CAEnumCertTypes
CACloseCertType
CASetCertTypeFlags
CAUpdateCA
CAEnumNextCertType
CAFreeCAProperty
CACertTypeSetSecurity
CAFindByName

msvcrt

memmove
??1type_info@@UAE@XZ
_except_handler3
_wcsicmp
wcsstr
__dllonexit
_onexit
wcschr
??2@YAPAXI@Z
wcsrchr
_initterm
wcslen
_adjust_fdiv
?terminate@@YAXXZ
??3@YAXPAX@Z
vswprintf
__RTDynamicCast
free
_purecall
wcscat
_wcsupr
wcscmp
wcscpy
mbstowcs
wcstoul
malloc

comctl32

PropertySheetW
CreatePropertySheetPageW

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

69346fdb66b49a7ebb89ce096417ad9c

Headers

File Characteristics

Imports

user32

kernel32

advapi32

certcli

msvcrt

comctl32

gdi32

Sections

.text Size: 43KB - Virtual size: 43KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 92KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 43KB - Virtual size: 43KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 92KB

.rsrc
Size: 24KB - Virtual size: 24KB