b263add6f794c795205eb7bce6a863521271816bdcb24e24db01de62824b2e0b

Sharing

Copy URL Twitter E-mail

General

Target

b263add6f794c795205eb7bce6a863521271816bdcb24e24db01de62824b2e0b
Size

97KB
MD5

ab49bf5448de35764cd8b4fe2836370e
SHA1

fd671542f5277b17fc1e8b2f564a965da0e82e1c
SHA256

b263add6f794c795205eb7bce6a863521271816bdcb24e24db01de62824b2e0b
SHA512

cbbf8c30d2b7d84d4516ca2716c1646a4f45e5c141e91bc7337231c6aa701d8fec7cb3c7f883947288386f8fcc6e8397c1d414d30dcdafec9ebc1ddc3aecdd49
SSDEEP

1536:7k3o72tWebnl3R2xlrzRfb/TduF9do2PFEBrc5q7perCjUovwr:7kYTep3RUnfb/hu62PFSc5qNm4Uo

Score

N/A

Malware Config

Signatures

Files

b263add6f794c795205eb7bce6a863521271816bdcb24e24db01de62824b2e0b
.exe windows x86

43148f4eff25bbd21c3352a199fab95e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStringsA
GetACP
GlobalFree
GetSystemWindowsDirectoryW
GlobalLock
FileTimeToSystemTime
GetSystemTimeAsFileTime
lstrlenW
GetProcessId
CloseHandle
GetCurrentProcess
GlobalAlloc
GlobalUnlock
SetLastError
IsBadReadPtr
LocalReAlloc
IsValidCodePage
FormatMessageW
GetComputerNameW
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
RemoveDirectoryW
SetUnhandledExceptionFilter
DeleteCriticalSection
GetModuleHandleA
FileTimeToLocalFileTime
OutputDebugStringW
InterlockedDecrement
LoadLibraryW
CreateFileW
GetTickCount
GetDateFormatW
InterlockedIncrement
GetModuleFileNameW
GetStartupInfoA
lstrcpyW
LocalFree
lstrcmpiW
GetLastError
InitializeCriticalSection
OutputDebugStringA

certcli

CAFreeCAProperty
CARemoveCACertificateType
CAGetCertTypeProperty
CAGetCertTypeFlags
CAEnumNextCertType
CASetCertTypeExtension
CAFindByName
CAEnumCertTypes
CAGetCAProperty
CACertTypeSetSecurity
CACertTypeGetSecurity
CASetCertTypeFlags
CAAddCACertificateType
CASetCertTypeProperty
CASetCertTypeKeySpec
CAFreeCertTypeProperty
CACloseCertType
CAGetCertTypeExtensions
CAGetCertTypePropertyEx
CAUpdateCertType
CAEnumCertTypesForCA
CAUpdateCA
CACreateCertType
CACloseCA
CAGetCertTypeKeySpec
CAFindCertTypeByName
CAFreeCertTypeExtensions

msvcrt

malloc
_except_handler3
_adjust_fdiv
?terminate@@YAXXZ
__dllonexit
??2@YAPAXI@Z
wcstoul
__RTDynamicCast
_onexit
_wcsupr
wcscat
wcscmp
??1type_info@@UAE@XZ
mbstowcs
_purecall
wcsrchr
??3@YAXPAX@Z
memmove
wcsstr
wcslen
wcscpy
vswprintf
free
_initterm
wcschr
_wcsicmp

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

user32

PostMessageW
SetWindowLongW
RegisterClipboardFormatW
SendMessageW
DialogBoxParamW
SendDlgItemMessageW
MessageBoxW
EnableWindow
WinHelpW
GetDC
LoadBitmapW
LoadCursorW
ReleaseDC
GetWindowLongW
SetFocus
LoadIconW
LoadImageW
SystemParametersInfoW
SetWindowTextW
SetCursor
LoadStringW
GetParent
wsprintfW
GetDlgItemTextA
SetDlgItemTextW
InsertMenuItemW
EndDialog
GetDlgItem

advapi32

RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegDeleteValueW
RegSetValueExW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43148f4eff25bbd21c3352a199fab95e

Headers

File Characteristics

Imports

kernel32

certcli

msvcrt

gdi32

user32

advapi32

comctl32

Sections

.text Size: 43KB - Virtual size: 43KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 122KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 43KB - Virtual size: 43KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 122KB

.rsrc
Size: 23KB - Virtual size: 22KB