9ff58dbbd93887db7aff54a71de57bdd2935580a6e974de8a7d61f1ce99853e2

Sharing

Copy URL Twitter E-mail

General

Target

9ff58dbbd93887db7aff54a71de57bdd2935580a6e974de8a7d61f1ce99853e2
Size

98KB
MD5

98e0d480e4af79c3bbc2761d2cf5b709
SHA1

bc58e4e3d1b67bdea00ba7769ec1285578aa0765
SHA256

9ff58dbbd93887db7aff54a71de57bdd2935580a6e974de8a7d61f1ce99853e2
SHA512

c6f88d7adc8beb0f8234fb3383484754b96cbf8f5249eb3002353744dcd035b812e7d4024016184c253c0c79966db6e1120675642e9ac1e912e3ba3d0532f6ad
SSDEEP

3072:bE5xeCoPTqXYmwb7pCOTFU7t/2w0uhNsobZHqo:bE5ECgzmw/EqeX0CbZH

Score

N/A

Malware Config

Signatures

Files

9ff58dbbd93887db7aff54a71de57bdd2935580a6e974de8a7d61f1ce99853e2
.exe windows x86

4f4411b204ab7c19864cd1012630298d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDialog
SetCursor
SystemParametersInfoW
GetDlgItemTextA
ReleaseDC
InsertMenuItemW
SendDlgItemMessageW
RegisterClipboardFormatW
GetParent
LoadCursorW
SetDlgItemTextW
LoadBitmapW
GetDC
LoadIconW
SetWindowTextW
LoadImageW
WinHelpW
EnableWindow
MessageBoxW
GetDlgItem
SetFocus
GetWindowLongW
DialogBoxParamW
wsprintfW
SetWindowLongW
PostMessageW
LoadStringW
SendMessageW

msvcrt

?terminate@@YAXXZ
_onexit
__dllonexit
wcsrchr
vswprintf
wcscpy
_except_handler3
??1type_info@@UAE@XZ
_adjust_fdiv
__RTDynamicCast
wcslen
mbstowcs
??2@YAPAXI@Z
_initterm
wcscat
_wcsupr
wcsstr
_wcsicmp
malloc
wcstoul
free
_purecall
??3@YAXPAX@Z
wcschr
wcscmp
memmove

kernel32

InitializeCriticalSection
CloseHandle
GlobalLock
GlobalAlloc
QueryPerformanceCounter
GetStartupInfoA
GetTickCount
GetEnvironmentStringsW
GetModuleHandleA
GetDateFormatW
GetProcessId
OutputDebugStringW
GetComputerNameW
DeleteCriticalSection
FileTimeToSystemTime
SetUnhandledExceptionFilter
CreateFileW
GetSystemTimeAsFileTime
GetACP
WideCharToMultiByte
GetEnvironmentStringsA
IsValidCodePage
IsBadReadPtr
GetCurrentProcess
InterlockedIncrement
SetLastError
GetModuleFileNameW
lstrcpyW
lstrlenW
GlobalFree
GetLastError
LoadLibraryW
FormatMessageW
GetSystemWindowsDirectoryW
InterlockedDecrement
OutputDebugStringA
lstrcmpiW
FileTimeToLocalFileTime
LocalReAlloc
LocalFree
GlobalUnlock
RemoveDirectoryW

certcli

CAEnumCertTypesForCA
CAFreeCertTypeProperty
CAGetCertTypeFlags
CASetCertTypeProperty
CAGetCertTypeKeySpec
CACloseCA
CASetCertTypeFlags
CAEnumNextCertType
CAEnumCertTypes
CAGetCertTypePropertyEx
CAGetCAProperty
CAUpdateCA
CACloseCertType
CAFreeCAProperty
CASetCertTypeKeySpec
CAAddCACertificateType
CAFindByName
CASetCertTypeExtension
CAGetCertTypeProperty
CAGetCertTypeExtensions
CACreateCertType
CACertTypeSetSecurity
CAUpdateCertType
CARemoveCACertificateType
CACertTypeGetSecurity
CAFindCertTypeByName
CAFreeCertTypeExtensions

advapi32

RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegOpenKeyExW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegQueryValueExW

comctl32

CreatePropertySheetPageW
PropertySheetW

gdi32

CreateFontIndirectW
GetDeviceCaps
DeleteObject

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4f4411b204ab7c19864cd1012630298d

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

certcli

advapi32

comctl32

gdi32

Sections

.text Size: 43KB - Virtual size: 42KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 109KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 43KB - Virtual size: 42KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 109KB

.rsrc
Size: 24KB - Virtual size: 23KB