adf8b7992852f8902320cc62f5b3a72e53cd399a75f81a91176e66f84e13cbbf

Sharing

Copy URL Twitter E-mail

General

Target

adf8b7992852f8902320cc62f5b3a72e53cd399a75f81a91176e66f84e13cbbf
Size

884KB
MD5

5d7acdb0323a9ece6c5a3964c675d400
SHA1

3ee8030ee787781f17f22a9e1f3626973da2c5fa
SHA256

adf8b7992852f8902320cc62f5b3a72e53cd399a75f81a91176e66f84e13cbbf
SHA512

f6931684b3f2c1243e01e2ca4fcd2d84e6612dcf5cc2b1678508e6d94ef3e8130fc96d0ddd260c6d0e8c7b8d3d8e9a6ad21ab5d8b546580aad0da86d59637da3
SSDEEP

24576:1twOocHZb8zhAzw/+glrFNLOMMYwCEWbgY6xsol63mU0:XwOocHZbohnFhOMrwCwVdof

Score

N/A

Malware Config

Signatures

Files

adf8b7992852f8902320cc62f5b3a72e53cd399a75f81a91176e66f84e13cbbf
.exe windows x86

ce495d1ba5dbbd5ee06953409e23e953

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendMessageW
ReleaseDC
LoadCursorW
SetCursor
SetWindowTextW
SetWindowLongW
WinHelpW
GetParent
SetFocus
EndDialog
RegisterClipboardFormatW
DialogBoxParamW
wsprintfW
LoadBitmapW
LoadStringW
GetDlgItemTextA
LoadIconW
SendDlgItemMessageW
SetDlgItemTextW
SystemParametersInfoW
PostMessageW
LoadImageW
EnableWindow
InsertMenuItemW
GetDlgItem
MessageBoxW
GetWindowLongW
GetDC

msvcrt

?terminate@@YAXXZ
__RTDynamicCast
_onexit
wcsrchr
_purecall
wcslen
__dllonexit
wcschr
_initterm
malloc
wcstoul
_wcsupr
wcscpy
memmove
mbstowcs
_except_handler3
vswprintf
_adjust_fdiv
_wcsicmp
wcsstr
wcscat
free
??2@YAPAXI@Z
??1type_info@@UAE@XZ
??3@YAXPAX@Z
wcscmp

kernel32

OutputDebugStringA
GlobalAlloc
QueryPerformanceCounter
SetLastError
GetSystemTimeAsFileTime
lstrcmpiW
GetProcAddress
InterlockedIncrement
GetModuleFileNameW
GetTickCount
GetEnvironmentStringsA
GetLastError
InitializeCriticalSection
InterlockedDecrement
GetComputerNameW
LoadLibraryW
CloseHandle
IsBadReadPtr
GetModuleHandleA
FileTimeToSystemTime
CreateFileW
GetSystemWindowsDirectoryW
SetUnhandledExceptionFilter
LocalReAlloc
FileTimeToLocalFileTime
OutputDebugStringW
GlobalUnlock
FormatMessageW
IsValidCodePage
lstrlenW
GetACP
GetCurrentProcess
GlobalFree
GetDateFormatW
GlobalLock
DeleteCriticalSection
LocalFree
WideCharToMultiByte
RemoveDirectoryA
GetStartupInfoA
lstrcpyW

certcli

CAGetCertTypeExtensions
CAFreeCertTypeProperty
CASetCertTypeFlags
CAGetCertTypeProperty
CAGetCertTypeKeySpec
CACertTypeGetSecurity
CAGetCertTypeFlags
CAGetCAProperty
CACreateCertType
CASetCertTypeExtension
CASetCertTypeProperty
CAAddCACertificateType
CASetCertTypeKeySpec
CAEnumNextCertType
CACertTypeSetSecurity
CAFreeCertTypeExtensions
CAFindCertTypeByName
CAUpdateCertType
CAUpdateCA
CARemoveCACertificateType
CAFreeCAProperty
CACloseCA
CAEnumCertTypesForCA
CAFindByName
CACloseCertType
CAGetCertTypePropertyEx
CAEnumCertTypes

advapi32

RegCreateKeyExW
RegOpenKeyExW
RegDeleteValueW
RegEnumKeyExW
RegSetValueExW
RegQueryValueExW
RegDeleteKeyW
RegCloseKey

comctl32

PropertySheetW
CreatePropertySheetPageW

gdi32

CreateFontIndirectW
DeleteObject
GetDeviceCaps

Sections

.text
Size: 401KB - Virtual size: 400KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 197KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce495d1ba5dbbd5ee06953409e23e953

Headers

DLL Characteristics

File Characteristics

Imports

user32

msvcrt

kernel32

certcli

advapi32

comctl32

gdi32

Sections

.text Size: 401KB - Virtual size: 400KB

.rdata Size: 107KB - Virtual size: 106KB

.data Size: 197KB - Virtual size: 1.8MB

.rsrc Size: 177KB - Virtual size: 176KB

.reloc Size: 1024B - Virtual size: 776B

.text
Size: 401KB - Virtual size: 400KB

.rdata
Size: 107KB - Virtual size: 106KB

.data
Size: 197KB - Virtual size: 1.8MB

.rsrc
Size: 177KB - Virtual size: 176KB

.reloc
Size: 1024B - Virtual size: 776B