8a1b82e89166303eb3e19378fb4c4435742ece2ec14092fbbe2a35c7a69c2fe8

Sharing

Copy URL

Twitter E-mail

General

Target

8a1b82e89166303eb3e19378fb4c4435742ece2ec14092fbbe2a35c7a69c2fe8
Size

98KB
MD5

3cb544d8e38d94c9cd0065566a869f56
SHA1

c075559834f31bb24295f8a16ac0b54fe8782ac8
SHA256

8a1b82e89166303eb3e19378fb4c4435742ece2ec14092fbbe2a35c7a69c2fe8
SHA512

dc85f858f4845ad171b590fb0ad4045e3979aab781b5752bc1ad552c0cbfacdaaefbd74989af3b6f9561c6d1de8efcc53f1e33966aa64b032c5f3c0b657a2d92
SSDEEP

1536:wP5swm+o8CoXX8hZfi6gZ1axm4uz+UimOzQ6VVTr8R0ppAJ1Za:wP5t7jMhZ23axxmuV5gRepAJq

Score

N/A

Malware Config

Signatures

Files

8a1b82e89166303eb3e19378fb4c4435742ece2ec14092fbbe2a35c7a69c2fe8
.exe windows x86

0f94b1d8eb91cd4dea46f5c3dcd45881

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowTextW
SystemParametersInfoW
EnableWindow
SetCursor
WinHelpW
LoadBitmapW
GetWindowLongW
wsprintfW
PostMessageW
SendDlgItemMessageW
GetDC
SendMessageW
LoadImageW
SetWindowLongW
MessageBoxW
SetDlgItemTextW
LoadStringW
LoadIconW
GetParent
ReleaseDC
LoadCursorW
GetDlgItemTextA
EndDialog
DialogBoxParamW
RegisterClipboardFormatW
SetFocus
GetDlgItem
InsertMenuItemW

gdi32

CreateFontIndirectW
DeleteObject
GetDeviceCaps

kernel32

CreateFileW
GetLastError
GlobalFree
IsValidCodePage
GetModuleHandleA
GlobalAlloc
InitializeCriticalSection
GetComputerNameW
CloseHandle
GetSystemTimeAsFileTime
FormatMessageW
DeleteCriticalSection
GetModuleFileNameW
lstrcmpiW
GetDateFormatW
GetSystemWindowsDirectoryW
GetEnvironmentStringsW
InterlockedDecrement
SetLastError
GetCurrentProcess
SetUnhandledExceptionFilter
lstrlenW
GlobalUnlock
QueryPerformanceCounter
lstrcpyW
GetStartupInfoA
GetTickCount
WideCharToMultiByte
LocalReAlloc
LocalFree
GetEnvironmentStringsA
RemoveDirectoryW
FileTimeToSystemTime
FileTimeToLocalFileTime
LoadLibraryW
IsBadReadPtr
OutputDebugStringA
GlobalLock
GetACP
InterlockedIncrement
GetProcessId
OutputDebugStringW

certcli

CAEnumCertTypes
CAFindCertTypeByName
CAGetCertTypeProperty
CAFindByName
CAUpdateCA
CAGetCAProperty
CASetCertTypeExtension
CACloseCertType
CAEnumNextCertType
CAGetCertTypePropertyEx
CASetCertTypeFlags
CAGetCertTypeKeySpec
CACloseCA
CARemoveCACertificateType
CAFreeCertTypeProperty
CAAddCACertificateType
CASetCertTypeKeySpec
CAGetCertTypeFlags
CAEnumCertTypesForCA
CAGetCertTypeExtensions
CACertTypeGetSecurity
CACreateCertType
CAFreeCertTypeExtensions
CAUpdateCertType
CAFreeCAProperty
CACertTypeSetSecurity
CASetCertTypeProperty

msvcrt

??2@YAPAXI@Z
??1type_info@@UAE@XZ
mbstowcs
memmove
wcsstr
__RTDynamicCast
wcstoul
wcscmp
_purecall
malloc
free
_except_handler3
??3@YAXPAX@Z
_adjust_fdiv
wcscat
_initterm
wcslen
__dllonexit
vswprintf
?terminate@@YAXXZ
_onexit
wcscpy
wcschr
_wcsupr
wcsrchr
_wcsicmp

advapi32

RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f94b1d8eb91cd4dea46f5c3dcd45881

Headers

File Characteristics

Imports

user32

gdi32

kernel32

certcli

msvcrt

advapi32

comctl32

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 106KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 106KB

.rsrc
Size: 23KB - Virtual size: 22KB