f3334d841ab3e3b434a7f94b7e8dd3cf4e8c32ac630e84ea3eb69f3b9a17c535

Sharing

Copy URL Twitter E-mail

General

Target

f3334d841ab3e3b434a7f94b7e8dd3cf4e8c32ac630e84ea3eb69f3b9a17c535
Size

98KB
MD5

1df3dd284ba987d6a6a49456163a17c1
SHA1

9a8574c04b779594ceccd5614e84c4f370a2a48f
SHA256

f3334d841ab3e3b434a7f94b7e8dd3cf4e8c32ac630e84ea3eb69f3b9a17c535
SHA512

9318716ff2d0b35f9e187d32d4c4a7bd3b734a46f20f50093e1ee29142123285d114fd7d8ff3345171f44b55d9a28d291f45e676648646045bb89ad8c175642f
SSDEEP

1536:hpqq0JHvsxoElW93XAehOvGv+5RrtMWy7ZBnwOK3JC0sJpz6+zZKetsc9uy5r2c:hpzMPZESY5rtMHdtjK3EpmKKetscZr

Score

N/A

Malware Config

Signatures

Files

f3334d841ab3e3b434a7f94b7e8dd3cf4e8c32ac630e84ea3eb69f3b9a17c535
.exe windows x86

5a2406be225bc94fb847b287770a9df9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAFreeCertTypeProperty
CAFreeCAProperty
CAFindByName
CAEnumCertTypesForCA
CAUpdateCertType
CAFindCertTypeByName
CAEnumNextCertType
CAFreeCertTypeExtensions
CAGetCertTypeFlags
CASetCertTypeKeySpec
CASetCertTypeFlags
CACloseCertType
CACreateCertType
CAGetCAProperty
CAGetCertTypeProperty
CAGetCertTypeKeySpec
CACertTypeGetSecurity
CASetCertTypeProperty
CAUpdateCA
CASetCertTypeExtension
CAAddCACertificateType
CAEnumCertTypes
CAGetCertTypeExtensions
CACloseCA
CAGetCertTypePropertyEx
CARemoveCACertificateType
CACertTypeSetSecurity

msvcrt

wcscmp
free
wcstoul
__dllonexit
_adjust_fdiv
wcsstr
_initterm
_wcsupr
memmove
mbstowcs
vswprintf
__RTDynamicCast
_onexit
?terminate@@YAXXZ
_wcsicmp
_except_handler3
malloc
??1type_info@@UAE@XZ
wcschr
wcslen
_purecall
??2@YAPAXI@Z
??3@YAXPAX@Z
wcsrchr
wcscat
wcscpy

kernel32

GetModuleHandleA
QueryPerformanceCounter
IsBadReadPtr
IsValidCodePage
DeleteCriticalSection
LocalReAlloc
GetSystemWindowsDirectoryW
GetSystemTimeAsFileTime
FileTimeToLocalFileTime
GetTickCount
FileTimeToSystemTime
InitializeCriticalSection
GlobalFree
InterlockedIncrement
CloseHandle
WideCharToMultiByte
GlobalLock
lstrcmpiW
GetStartupInfoA
lstrcpyW
GlobalUnlock
GlobalAlloc
CreateFileW
FormatMessageW
GetLastError
GetCurrentProcess
OutputDebugStringW
GetModuleFileNameW
SetLastError
LocalFree
GetEnvironmentStringsA
InterlockedDecrement
GetACP
GetDateFormatW
OutputDebugStringA
RemoveDirectoryW
GetComputerNameW
lstrlenW
SetUnhandledExceptionFilter
LoadLibraryW
GetProcAddress

user32

GetDC
InsertMenuItemW
DialogBoxParamW
WinHelpW
wsprintfW
EnableWindow
SetWindowTextW
SetCursor
PostMessageW
ReleaseDC
GetWindowLongW
SystemParametersInfoW
GetParent
LoadImageW
RegisterClipboardFormatW
SetWindowLongW
LoadBitmapW
SetFocus
MessageBoxW
GetDlgItemTextA
GetDlgItem
LoadCursorW
SendDlgItemMessageW
LoadStringW
SetDlgItemTextW
EndDialog
SendMessageW
LoadIconW

advapi32

RegQueryValueExW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
RegSetValueExW
RegDeleteValueW

comctl32

CreatePropertySheetPageW
PropertySheetW

gdi32

DeleteObject
CreateFontIndirectW
GetDeviceCaps

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a2406be225bc94fb847b287770a9df9

Headers

File Characteristics

Imports

certcli

msvcrt

kernel32

user32

advapi32

comctl32

gdi32

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 109KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 109KB

.rsrc
Size: 23KB - Virtual size: 23KB