ce15bf481ffe804f606730e23a78d373c1e8e83f353d083f7e4b13233668b886

Sharing

Copy URL

Twitter E-mail

General

Target

ce15bf481ffe804f606730e23a78d373c1e8e83f353d083f7e4b13233668b886
Size

204KB
MD5

0fff58f6bd2100ebbde6a8656fd0c1f0
SHA1

b86bcf0640c7bd151f6a1b5710e84cd91ed12ca1
SHA256

ce15bf481ffe804f606730e23a78d373c1e8e83f353d083f7e4b13233668b886
SHA512

2f2bffe531aeca44e72b1e516f180c485b023bbc212d695a80b6e9721e0b34310cc8ac1adb91776ca19be313bcb977efaeec57328e8486de25da6fbcac8570cd
SSDEEP

3072:xrBgvjGFrBIu0xgY7wuRjDFHXePpwpsKqeYE92fJCVmflX6iLx75lvdNbSOi9iVb:dlux9RjDBXeYlqeYEoRZjJdtSOOiVME

Score

N/A

Malware Config

Signatures

Files

ce15bf481ffe804f606730e23a78d373c1e8e83f353d083f7e4b13233668b886
.exe windows x86

7225627e8d2f0246854e8623491caece

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegDeleteKeyW
RegDeleteValueW
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW

kernel32

GlobalLock
GetStartupInfoA
SetUnhandledExceptionFilter
GlobalUnlock
FormatMessageW
QueryPerformanceCounter
DeleteCriticalSection
InterlockedDecrement
GetSystemWindowsDirectoryW
GetEnvironmentStringsW
GetDateFormatW
GetProcessId
GetTickCount
GetModuleHandleA
GetCurrentProcess
InitializeCriticalSection
lstrcpyW
IsValidCodePage
lstrlenW
OutputDebugStringW
GetLastError
GlobalAlloc
SetLastError
RemoveDirectoryW
GetComputerNameW
GetACP
lstrcmpiW
GetEnvironmentStringsA
GlobalFree
LocalReAlloc
FileTimeToSystemTime
FileTimeToLocalFileTime
GetModuleFileNameW
CreateFileW
LocalFree
IsBadReadPtr
GetSystemTimeAsFileTime
OutputDebugStringA
LoadLibraryW
InterlockedIncrement
CloseHandle
WideCharToMultiByte

msvcrt

wcscmp
__RTDynamicCast
wcslen
??1type_info@@UAE@XZ
__dllonexit
_purecall
memmove
_wcsicmp
_wcsupr
wcsstr
??3@YAXPAX@Z
malloc
_onexit
_initterm
wcscpy
wcschr
??2@YAPAXI@Z
wcstoul
_except_handler3
?terminate@@YAXXZ
mbstowcs
wcscat
vswprintf
wcsrchr
free
_adjust_fdiv

user32

SetWindowLongW
SetCursor
LoadCursorW
GetDC
PostMessageW
DialogBoxParamW
EnableWindow
InsertMenuItemW
GetParent
LoadIconW
GetDlgItem
MessageBoxW
LoadBitmapW
LoadStringW
LoadImageW
SetFocus
SetWindowTextW
GetWindowLongW
SetDlgItemTextW
SendDlgItemMessageW
EndDialog
ReleaseDC
RegisterClipboardFormatW
SystemParametersInfoW
wsprintfW
GetDlgItemTextA
WinHelpW
SendMessageW

certcli

CAGetCertTypeKeySpec
CASetCertTypeProperty
CAGetCertTypeProperty
CAGetCertTypeFlags
CACertTypeGetSecurity
CAFreeCAProperty
CASetCertTypeKeySpec
CAFreeCertTypeProperty
CAUpdateCertType
CASetCertTypeExtension
CAUpdateCA
CAGetCertTypePropertyEx
CAGetCAProperty
CARemoveCACertificateType
CAEnumCertTypes
CAEnumCertTypesForCA
CACloseCertType
CAGetCertTypeExtensions
CAFreeCertTypeExtensions
CAFindByName
CACloseCA
CASetCertTypeFlags
CACreateCertType
CAEnumNextCertType
CAFindCertTypeByName
CAAddCACertificateType
CACertTypeSetSecurity

comctl32

PropertySheetW
CreatePropertySheetPageW

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

Sections

.code
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 6.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7225627e8d2f0246854e8623491caece

Headers

File Characteristics

Imports

advapi32

kernel32

msvcrt

user32

certcli

comctl32

gdi32

Sections

.code Size: 71KB - Virtual size: 70KB

.rdata Size: 16KB - Virtual size: 6.3MB

.rsrc Size: 3KB - Virtual size: 3KB

.data Size: 112KB - Virtual size: 111KB

.code
Size: 71KB - Virtual size: 70KB

.rdata
Size: 16KB - Virtual size: 6.3MB

.rsrc
Size: 3KB - Virtual size: 3KB

.data
Size: 112KB - Virtual size: 111KB