ab5c69f1305ae3baca62ea002b7e000931f6d51d86f5c7cffccbe14e78a62c5c

Sharing

Copy URL

Twitter E-mail

General

Target

ab5c69f1305ae3baca62ea002b7e000931f6d51d86f5c7cffccbe14e78a62c5c
Size

99KB
MD5

1a400608495f187a2318efbb06ff1010
SHA1

d9a9dd318220a4c578344d369bdcafa1106531cc
SHA256

ab5c69f1305ae3baca62ea002b7e000931f6d51d86f5c7cffccbe14e78a62c5c
SHA512

1c6933d42e1195bd8cd79bc28ae34ac04701b608bf4190f5e4cb03a1f9ddb66c44f7f2eb8d2dc979823447f6ae8b9589ca5881496c741bd29dc563109a3c12e3
SSDEEP

1536:Xu1svFHYZag4fDICnNxNLOAKFRUCtHS/G+E/L4UFeCLTVnkH/PjhMZTFSE:Xu1svF4OsCNxNLZdO0G+u4UFWPju2

Score

N/A

Malware Config

Signatures

Files

ab5c69f1305ae3baca62ea002b7e000931f6d51d86f5c7cffccbe14e78a62c5c
.exe windows x86

441873f94701ebad37c9d62e4b4a2872

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
GetDateFormatW
RemoveDirectoryW
FileTimeToSystemTime
GetComputerNameW
InterlockedIncrement
SetLastError
GetSystemTimeAsFileTime
GetModuleFileNameW
SetUnhandledExceptionFilter
GetEnvironmentStringsW
GetTickCount
FormatMessageW
GetSystemWindowsDirectoryW
GetStartupInfoA
GetModuleHandleA
LocalFree
GetProcessId
lstrlenW
GetACP
GlobalUnlock
OutputDebugStringW
FileTimeToLocalFileTime
lstrcpyW
lstrcmpiW
WideCharToMultiByte
GlobalFree
OutputDebugStringA
LocalReAlloc
CloseHandle
InterlockedDecrement
DeleteCriticalSection
IsValidCodePage
LoadLibraryW
GlobalLock
GetLastError
CreateFileW
IsBadReadPtr
GetCurrentProcess
GetEnvironmentStringsA
GlobalAlloc
QueryPerformanceCounter

certcli

CAGetCertTypeExtensions
CASetCertTypeProperty
CACreateCertType
CACloseCertType
CAEnumCertTypesForCA
CAGetCertTypeProperty
CAFindByName
CAEnumNextCertType
CAUpdateCA
CACloseCA
CAGetCAProperty
CARemoveCACertificateType
CAAddCACertificateType
CASetCertTypeKeySpec
CAFreeCAProperty
CAEnumCertTypes
CAGetCertTypeFlags
CAFreeCertTypeExtensions
CAGetCertTypeKeySpec
CAUpdateCertType
CACertTypeSetSecurity
CASetCertTypeFlags
CAGetCertTypePropertyEx
CAFreeCertTypeProperty
CASetCertTypeExtension
CAFindCertTypeByName
CACertTypeGetSecurity

gdi32

CreateFontIndirectW
DeleteObject
GetDeviceCaps

msvcrt

_initterm
malloc
wcslen
_except_handler3
wcscmp
_adjust_fdiv
??2@YAPAXI@Z
wcschr
__RTDynamicCast
_wcsicmp
_purecall
mbstowcs
_onexit
wcscat
wcscpy
__dllonexit
free
??3@YAXPAX@Z
?terminate@@YAXXZ
wcstoul
_wcsupr
wcsrchr
memmove
vswprintf
wcsstr
??1type_info@@UAE@XZ

user32

LoadIconW
SendDlgItemMessageW
InsertMenuItemW
LoadStringW
GetWindowLongW
GetDlgItemTextA
SendMessageW
SetDlgItemTextW
GetParent
LoadCursorW
LoadBitmapW
SetFocus
RegisterClipboardFormatW
GetDlgItem
SetWindowTextW
SetCursor
PostMessageW
SystemParametersInfoW
MessageBoxW
EndDialog
EnableWindow
GetDC
ReleaseDC
WinHelpW
wsprintfW
SetWindowLongW
LoadImageW
DialogBoxParamW

advapi32

RegDeleteKeyW
RegSetValueExW
RegEnumKeyExW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegDeleteValueW
RegQueryValueExW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

441873f94701ebad37c9d62e4b4a2872

Headers

File Characteristics

Imports

kernel32

certcli

gdi32

msvcrt

user32

advapi32

comctl32

Sections

.text Size: 42KB - Virtual size: 42KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 119KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 42KB - Virtual size: 42KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 119KB

.rsrc
Size: 25KB - Virtual size: 25KB