9abdb2f7692b23d97a010d3b73b3eba1cf9ba469753c19446315baa532cf65e3

Sharing

Copy URL Twitter E-mail

General

Target

9abdb2f7692b23d97a010d3b73b3eba1cf9ba469753c19446315baa532cf65e3
Size

98KB
MD5

1918223bb4aee13388ec7d475450e360
SHA1

7e0300b965bece8cb59bb9099ddb6497cafa4767
SHA256

9abdb2f7692b23d97a010d3b73b3eba1cf9ba469753c19446315baa532cf65e3
SHA512

d20eb8e27711cf11863bbd302b3368ded53a131913f18aebd853a0de37f6ece6195e9546dc93c67215466fa09763875e102f830e33636db30fe5045c8ab7f780
SSDEEP

1536:3GVzA2jH0kAIZCRHSl8HA3kozsDkTQYFcR09GYJTnk21QniuRatP:3GGIsBiujo0kTQoflRnk2kRO

Score

N/A

Malware Config

Signatures

Files

9abdb2f7692b23d97a010d3b73b3eba1cf9ba469753c19446315baa532cf65e3
.exe windows x86

665fe38e294930b41ed6077f9f9d3958

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcslen
??3@YAXPAX@Z
_wcsupr
??1type_info@@UAE@XZ
vswprintf
free
_adjust_fdiv
wcscat
wcsstr
_purecall
__RTDynamicCast
mbstowcs
wcscpy
malloc
_initterm
?terminate@@YAXXZ
_onexit
wcschr
wcscmp
wcstoul
__dllonexit
wcsrchr
_except_handler3
memmove
_wcsicmp
??2@YAPAXI@Z

advapi32

RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegOpenKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegCloseKey
RegQueryValueExW

user32

GetDC
GetWindowLongW
GetDlgItemTextA
SendMessageW
SetWindowLongW
SystemParametersInfoW
RegisterClipboardFormatW
ReleaseDC
SendDlgItemMessageW
SetCursor
SetDlgItemTextW
EnableWindow
LoadBitmapW
WinHelpW
LoadCursorW
LoadIconW
LoadImageW
LoadStringW
MessageBoxW
PostMessageW
SetWindowTextW
EndDialog
GetDlgItem
DialogBoxParamW
SetFocus
GetParent
InsertMenuItemW
wsprintfW

kernel32

IsBadReadPtr
FileTimeToSystemTime
GetSystemWindowsDirectoryW
GetModuleFileNameW
CloseHandle
IsValidCodePage
OutputDebugStringA
InitializeCriticalSection
lstrlenW
DeleteCriticalSection
GetModuleHandleA
GetComputerNameW
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
GetStartupInfoA
lstrcmpiW
WideCharToMultiByte
GetTickCount
GetLastError
InterlockedDecrement
lstrcpyW
CreateFileW
InterlockedIncrement
GlobalLock
FormatMessageW
RemoveDirectoryW
GetACP
LoadLibraryW
GetCurrentProcess
OutputDebugStringW
GlobalAlloc
GlobalUnlock
SetUnhandledExceptionFilter
GetEnvironmentStringsA
LocalFree
QueryPerformanceCounter
LocalReAlloc
SetLastError
GetProcAddress
GetDateFormatW
GlobalFree

certcli

CASetCertTypeKeySpec
CACreateCertType
CAUpdateCertType
CARemoveCACertificateType
CAFreeCertTypeExtensions
CAGetCAProperty
CAGetCertTypeFlags
CAAddCACertificateType
CACertTypeGetSecurity
CASetCertTypeExtension
CAUpdateCA
CASetCertTypeFlags
CAGetCertTypeProperty
CAEnumCertTypesForCA
CAGetCertTypeExtensions
CAFindCertTypeByName
CAGetCertTypePropertyEx
CAEnumNextCertType
CACloseCertType
CAEnumCertTypes
CACloseCA
CAFindByName
CASetCertTypeProperty
CAGetCertTypeKeySpec
CACertTypeSetSecurity
CAFreeCAProperty
CAFreeCertTypeProperty

gdi32

CreateFontIndirectW
DeleteObject
GetDeviceCaps

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

665fe38e294930b41ed6077f9f9d3958

Headers

File Characteristics

Imports

msvcrt

advapi32

user32

kernel32

certcli

gdi32

comctl32

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 116KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 116KB

.rsrc
Size: 23KB - Virtual size: 22KB