99965f258ea97110f3b3757fe0c89e830b9cdcbe601d455aa0961d6574577405

Sharing

Copy URL Twitter E-mail

General

Target

99965f258ea97110f3b3757fe0c89e830b9cdcbe601d455aa0961d6574577405
Size

98KB
MD5

2f2144a2ac84f3e6ae3beab3f6407c30
SHA1

bde8ddeddfcc0a1c5943af66c8ce9c8ca1212c6d
SHA256

99965f258ea97110f3b3757fe0c89e830b9cdcbe601d455aa0961d6574577405
SHA512

520523466d85336edb58d0aad3bb0328993800271132358ae4d6226e02099fd8659b75e703cd3de25e36a657d4faabd9c31b4ce298761df081e4f2749878e45b
SSDEEP

1536:psxBlOybiRVSXFr7O4br0FUK9Io05urpEMAt1R2DQmL0M:pMAy2RVSF7XrwUjX5urpEMAt1R27

Score

N/A

Malware Config

Signatures

Files

99965f258ea97110f3b3757fe0c89e830b9cdcbe601d455aa0961d6574577405
.exe windows x86

cfa23bfbd27c4eefb182702c487e0cae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExW
RegDeleteKeyW
RegQueryValueExW
RegDeleteValueW
RegEnumKeyExW
RegCloseKey
RegCreateKeyExW
RegSetValueExW

msvcrt

__RTDynamicCast
wcstoul
_adjust_fdiv
wcslen
??2@YAPAXI@Z
memmove
_wcsupr
?terminate@@YAXXZ
wcscat
??3@YAXPAX@Z
__dllonexit
??1type_info@@UAE@XZ
wcscpy
_purecall
free
wcsrchr
_initterm
_except_handler3
wcschr
_onexit
malloc
wcsstr
wcscmp
vswprintf
mbstowcs
_wcsicmp

certcli

CAAddCACertificateType
CACertTypeSetSecurity
CACertTypeGetSecurity
CARemoveCACertificateType
CAGetCAProperty
CAGetCertTypeExtensions
CAUpdateCA
CAFreeCAProperty
CAFreeCertTypeExtensions
CASetCertTypeExtension
CAFindByName
CAUpdateCertType
CAEnumCertTypes
CAGetCertTypeProperty
CAGetCertTypePropertyEx
CAGetCertTypeFlags
CASetCertTypeKeySpec
CAGetCertTypeKeySpec
CASetCertTypeFlags
CAEnumCertTypesForCA
CAFreeCertTypeProperty
CACloseCA
CACloseCertType
CAFindCertTypeByName
CAEnumNextCertType
CASetCertTypeProperty
CACreateCertType

user32

LoadBitmapW
SendDlgItemMessageW
GetDlgItem
GetParent
SystemParametersInfoW
SetWindowLongW
WinHelpW
wsprintfW
SetDlgItemTextW
MessageBoxW
LoadImageW
GetDC
RegisterClipboardFormatW
GetWindowLongW
LoadCursorW
EndDialog
ReleaseDC
DialogBoxParamW
LoadIconW
PostMessageW
InsertMenuItemW
SendMessageW
LoadStringW
SetFocus
GetDlgItemTextA
SetWindowTextW
EnableWindow
SetCursor

kernel32

LoadLibraryW
CreateFileW
OutputDebugStringW
InitializeCriticalSection
LocalFree
GlobalLock
SetUnhandledExceptionFilter
lstrcpyW
GetDateFormatW
GetModuleHandleA
GetLastError
GetProcessId
GetCurrentProcess
lstrlenW
GetEnvironmentStringsA
WideCharToMultiByte
LocalReAlloc
GetACP
DeleteCriticalSection
InterlockedDecrement
GetStartupInfoA
GlobalUnlock
FileTimeToLocalFileTime
GlobalAlloc
SetLastError
GetEnvironmentStringsW
OutputDebugStringA
GetComputerNameW
InterlockedIncrement
FormatMessageW
RemoveDirectoryW
GetTickCount
GlobalFree
GetModuleFileNameW
lstrcmpiW
GetSystemWindowsDirectoryW
QueryPerformanceCounter
IsBadReadPtr
IsValidCodePage
CloseHandle
FileTimeToSystemTime
GetSystemTimeAsFileTime

gdi32

CreateFontIndirectW
DeleteObject
GetDeviceCaps

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfa23bfbd27c4eefb182702c487e0cae

Headers

File Characteristics

Imports

advapi32

msvcrt

certcli

user32

kernel32

gdi32

comctl32

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 68KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 68KB

.rsrc
Size: 23KB - Virtual size: 22KB