b3373143b37b6311adbf84e327a19cedad6179ab37875f2fd78015645ced9e25

Sharing

Copy URL Twitter E-mail

General

Target

b3373143b37b6311adbf84e327a19cedad6179ab37875f2fd78015645ced9e25
Size

99KB
MD5

304c6ef598c95dcf5ba2c1226cd4a456
SHA1

42102e852371723295fdfa24a9a69a039d26c650
SHA256

b3373143b37b6311adbf84e327a19cedad6179ab37875f2fd78015645ced9e25
SHA512

c9acc43115eaa3a6f7bc606f84128db8e2c9f057ed60816edad04ecb1925da233e78e75011a0119146ce9c335cdb1b1e83d7bad599a4f8aea4d9bb2521c80a82
SSDEEP

3072:Im5f8IP3vyScWGug1N3GRZ7X36AFaHAqIU2:IgfTiSc2guZvmAJ

Score

N/A

Malware Config

Signatures

Files

b3373143b37b6311adbf84e327a19cedad6179ab37875f2fd78015645ced9e25
.exe windows x86

3025cb92866afc8f3e5f4d127b6448ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAGetCertTypePropertyEx
CAEnumNextCertType
CASetCertTypeFlags
CAFreeCAProperty
CAEnumCertTypesForCA
CARemoveCACertificateType
CACloseCA
CAAddCACertificateType
CAGetCertTypeFlags
CACloseCertType
CAFreeCertTypeExtensions
CAGetCertTypeExtensions
CAEnumCertTypes
CAGetCertTypeProperty
CAUpdateCA
CAUpdateCertType
CAGetCertTypeKeySpec
CAGetCAProperty
CAFindCertTypeByName
CACertTypeGetSecurity
CASetCertTypeExtension
CASetCertTypeKeySpec
CACertTypeSetSecurity
CAFindByName
CACreateCertType
CASetCertTypeProperty
CAFreeCertTypeProperty

kernel32

InitializeCriticalSection
InterlockedIncrement
OutputDebugStringW
GetEnvironmentStringsW
GetComputerNameW
FormatMessageW
GetProcessId
GetDateFormatW
GetCurrentProcess
GlobalUnlock
GetLastError
QueryPerformanceCounter
lstrcmpiW
OutputDebugStringA
SetUnhandledExceptionFilter
GetACP
FileTimeToLocalFileTime
LocalReAlloc
WideCharToMultiByte
IsBadReadPtr
GetModuleHandleA
GetModuleFileNameW
LoadLibraryW
GetSystemWindowsDirectoryW
GetSystemTimeAsFileTime
CloseHandle
SetLastError
CreateFileW
GlobalAlloc
lstrlenW
GetTickCount
RemoveDirectoryW
GlobalLock
InterlockedDecrement
FileTimeToSystemTime
DeleteCriticalSection
GetEnvironmentStringsA
LocalFree
IsValidCodePage
GlobalFree
lstrcpyW
GetStartupInfoA

user32

SendDlgItemMessageW
SetFocus
InsertMenuItemW
LoadIconW
GetParent
LoadStringW
SetDlgItemTextW
EnableWindow
SetCursor
GetDlgItemTextA
MessageBoxW
SendMessageW
wsprintfW
LoadBitmapW
DialogBoxParamW
RegisterClipboardFormatW
SetWindowTextW
GetDC
LoadCursorW
LoadImageW
WinHelpW
ReleaseDC
GetDlgItem
SystemParametersInfoW
SetWindowLongW
EndDialog
GetWindowLongW
PostMessageW

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

advapi32

RegEnumKeyExW
RegDeleteValueW
RegSetValueExW
RegDeleteKeyW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW
RegCreateKeyExW

msvcrt

wcscat
?terminate@@YAXXZ
malloc
wcsstr
_wcsupr
wcslen
wcsrchr
mbstowcs
wcschr
vswprintf
??1type_info@@UAE@XZ
_onexit
??2@YAPAXI@Z
_initterm
wcscpy
??3@YAXPAX@Z
_except_handler3
_adjust_fdiv
_wcsicmp
__dllonexit
wcstoul
_purecall
wcscmp
free
__RTDynamicCast
memmove

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3025cb92866afc8f3e5f4d127b6448ca

Headers

File Characteristics

Imports

certcli

kernel32

user32

gdi32

advapi32

msvcrt

comctl32

Sections

.text Size: 44KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 83KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 44KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 83KB

.rsrc
Size: 24KB - Virtual size: 23KB