cce948195f2de5f21707f569269497fb1947b9321eed3adaa8e10519fc7faca4

Sharing

Copy URL

Twitter E-mail

General

Target

cce948195f2de5f21707f569269497fb1947b9321eed3adaa8e10519fc7faca4
Size

101KB
MD5

2666abd663af88f0be92fabf9ab142e0
SHA1

975f7f92a1d24b5cf0d6ec0600b36b47c2d823ed
SHA256

cce948195f2de5f21707f569269497fb1947b9321eed3adaa8e10519fc7faca4
SHA512

2e6fb2fd0a06a147860774b6cc4e004a524f4b251bd909aed5a750266d41a264e7fc150a4460b6a6caaccc80e4069c588cdced97e00909384fe27d1c062d0737
SSDEEP

1536:LIkxz0/B3OuR9zk1jZhoTAS/p8+1PERFl3GKchwDu4r1a9c7PahtTJnd999:LIo0ouujrosmMRPGK/npa9c7yhtT

Score

N/A

Malware Config

Signatures

Files

cce948195f2de5f21707f569269497fb1947b9321eed3adaa8e10519fc7faca4
.exe windows x86

6b10b95541f94291656d56690fe36a75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
WideCharToMultiByte
LoadLibraryW
GetStartupInfoA
IsBadReadPtr
lstrcpyW
GlobalUnlock
FormatMessageW
LocalFree
GetModuleHandleA
GetEnvironmentStringsW
InterlockedDecrement
lstrlenW
GetProcessId
LocalReAlloc
GlobalFree
QueryPerformanceCounter
DeleteCriticalSection
GlobalLock
RemoveDirectoryW
GetLastError
CloseHandle
GetEnvironmentStringsA
GlobalAlloc
SetUnhandledExceptionFilter
FileTimeToSystemTime
SetLastError
OutputDebugStringW
InitializeCriticalSection
lstrcmpiW
CreateFileW
GetComputerNameW
GetModuleFileNameW
GetSystemWindowsDirectoryW
OutputDebugStringA
GetTickCount
GetDateFormatW
IsValidCodePage
InterlockedIncrement
FileTimeToLocalFileTime
GetCurrentProcess
GetACP

certcli

CAGetCertTypeFlags
CACertTypeSetSecurity
CAEnumCertTypes
CACloseCA
CAFindByName
CAFindCertTypeByName
CARemoveCACertificateType
CAUpdateCertType
CAFreeCertTypeExtensions
CASetCertTypeKeySpec
CAGetCAProperty
CASetCertTypeExtension
CAGetCertTypeProperty
CAGetCertTypeKeySpec
CASetCertTypeFlags
CAEnumNextCertType
CACreateCertType
CAFreeCertTypeProperty
CAFreeCAProperty
CAGetCertTypeExtensions
CACertTypeGetSecurity
CAAddCACertificateType
CAUpdateCA
CAGetCertTypePropertyEx
CACloseCertType
CASetCertTypeProperty
CAEnumCertTypesForCA

msvcrt

_wcsupr
wcslen
_except_handler3
_onexit
mbstowcs
_adjust_fdiv
wcscpy
?terminate@@YAXXZ
??1type_info@@UAE@XZ
_purecall
__dllonexit
_wcsicmp
??3@YAXPAX@Z
vswprintf
wcstoul
wcscmp
??2@YAPAXI@Z
wcsstr
wcschr
memmove
wcscat
malloc
free
wcsrchr
__RTDynamicCast
_initterm

gdi32

DeleteObject
GetDeviceCaps
CreateFontIndirectW

user32

SetWindowTextW
DialogBoxParamW
GetDC
GetDlgItemTextA
LoadCursorW
LoadIconW
SystemParametersInfoW
EndDialog
MessageBoxW
GetDlgItem
GetWindowLongW
LoadImageW
SetWindowLongW
InsertMenuItemW
ReleaseDC
LoadBitmapW
LoadStringW
SetFocus
GetParent
PostMessageW
RegisterClipboardFormatW
EnableWindow
SendDlgItemMessageW
WinHelpW
SetCursor
wsprintfW
SetDlgItemTextW
SendMessageW

comctl32

PropertySheetW
CreatePropertySheetPageW

advapi32

RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
RegEnumKeyExW
RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
RegDeleteValueW

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b10b95541f94291656d56690fe36a75

Headers

File Characteristics

Imports

kernel32

certcli

msvcrt

gdi32

user32

comctl32

advapi32

Sections

.text Size: 44KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 105KB

.rsrc Size: 26KB - Virtual size: 25KB

.text
Size: 44KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 105KB

.rsrc
Size: 26KB - Virtual size: 25KB