aa568881f066d92b9c983a87c5fa56c3656b56b61c1edaf661f43ee4ec35d25f

Sharing

Copy URL Twitter E-mail

General

Target

aa568881f066d92b9c983a87c5fa56c3656b56b61c1edaf661f43ee4ec35d25f
Size

98KB
MD5

5ff2bb46a13e17502c20a58dc1539d09
SHA1

c12be529f006b393036517e502a472fa9d2edcdc
SHA256

aa568881f066d92b9c983a87c5fa56c3656b56b61c1edaf661f43ee4ec35d25f
SHA512

588f9b84275bfc8699ada85e17a2caaedb64e78b80c6016872f5a61fd62841f4a99711b564c8049b55a238579fb3690b1e78388e9a647bbd23cac2f6115cd902
SSDEEP

1536:ubBvT83zI4XrY4g97YN40K5uayK+e4IqC8QzOyVj4pAZkfZmr2Fa:uw3qCKMJ5+qbQzOdppfoAa

Score

N/A

Malware Config

Signatures

Files

aa568881f066d92b9c983a87c5fa56c3656b56b61c1edaf661f43ee4ec35d25f
.exe windows x86

e6cdf2655d880095d6d3d9027451a5d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CARemoveCACertificateType
CAGetCertTypeFlags
CAFindCertTypeByName
CAFreeCertTypeExtensions
CAGetCertTypePropertyEx
CAEnumCertTypesForCA
CACloseCertType
CACertTypeSetSecurity
CAEnumCertTypes
CAUpdateCertType
CAAddCACertificateType
CACreateCertType
CAFindByName
CASetCertTypeExtension
CAGetCertTypeProperty
CAEnumNextCertType
CASetCertTypeFlags
CASetCertTypeKeySpec
CACloseCA
CAGetCAProperty
CAFreeCAProperty
CACertTypeGetSecurity
CAGetCertTypeExtensions
CASetCertTypeProperty
CAFreeCertTypeProperty
CAGetCertTypeKeySpec
CAUpdateCA

msvcrt

wcscpy
??2@YAPAXI@Z
wcscat
_wcsicmp
free
??1type_info@@UAE@XZ
wcsrchr
_wcsupr
wcslen
__RTDynamicCast
_onexit
vswprintf
_initterm
wcschr
_purecall
_except_handler3
malloc
wcsstr
__dllonexit
??3@YAXPAX@Z
wcstoul
memmove
mbstowcs
_adjust_fdiv
?terminate@@YAXXZ
wcscmp

kernel32

IsValidCodePage
GlobalAlloc
lstrcmpiW
CreateFileW
SetUnhandledExceptionFilter
GetCurrentProcess
FileTimeToSystemTime
InterlockedIncrement
DeleteCriticalSection
FileTimeToLocalFileTime
GlobalFree
GlobalUnlock
GetModuleFileNameW
GetACP
InterlockedDecrement
QueryPerformanceCounter
GlobalLock
GetSystemTimeAsFileTime
GetSystemWindowsDirectoryW
GetModuleHandleA
WideCharToMultiByte
LoadLibraryW
FormatMessageW
GetComputerNameW
IsBadReadPtr
GetDateFormatW
LocalReAlloc
lstrlenW
GetLastError
GetTickCount
OutputDebugStringA
GetStartupInfoA
lstrcpyW
SetLastError
InitializeCriticalSection
GetEnvironmentStringsA
OutputDebugStringW
GetProcessId
RemoveDirectoryW
LocalFree
CloseHandle
GetEnvironmentStringsW

gdi32

DeleteObject
CreateFontIndirectW
GetDeviceCaps

user32

ReleaseDC
GetParent
MessageBoxW
SendDlgItemMessageW
GetDlgItemTextA
LoadImageW
GetDlgItem
EndDialog
SetDlgItemTextW
LoadIconW
LoadBitmapW
PostMessageW
DialogBoxParamW
WinHelpW
LoadStringW
EnableWindow
GetDC
SetWindowLongW
LoadCursorW
SystemParametersInfoW
InsertMenuItemW
GetWindowLongW
SetFocus
SetWindowTextW
SetCursor
SendMessageW
wsprintfW
RegisterClipboardFormatW

advapi32

RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegCreateKeyExW
RegSetValueExW
RegQueryValueExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6cdf2655d880095d6d3d9027451a5d5

Headers

File Characteristics

Imports

certcli

msvcrt

kernel32

gdi32

user32

advapi32

comctl32

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 103KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 103KB

.rsrc
Size: 23KB - Virtual size: 23KB