6ac5886f1e0b8d462f623e6c05f669111b899eb5a9ac7bcb19deb628c88a138d

Sharing

Copy URL Twitter E-mail

General

Target

6ac5886f1e0b8d462f623e6c05f669111b899eb5a9ac7bcb19deb628c88a138d
Size

881KB
MD5

631103a13430155e92f9ea541a25d740
SHA1

0e7771c9eea9eeed85511021522ee87deb8a2280
SHA256

6ac5886f1e0b8d462f623e6c05f669111b899eb5a9ac7bcb19deb628c88a138d
SHA512

c12058bb743fbdb9e96be3b339691d417862de1a075a65a9fb47dc027eee2f9f6bd133fa4f13e643695d87d2975a8080a1b9bcd779e9195cc2ffcc492dcc5846
SSDEEP

24576:qweaIrBzuuguP/MHM2VxvG4MRYgsI/wX0AB+5C:qDL9Cno/MHlvqYRI4EAB+c

Score

N/A

Malware Config

Signatures

Files

6ac5886f1e0b8d462f623e6c05f669111b899eb5a9ac7bcb19deb628c88a138d
.exe windows x86

7e2c3aa41d3b80081f0226058da2d3ae

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler3
_initterm
wcschr
_wcsicmp
free
mbstowcs
__RTDynamicCast
__dllonexit
?terminate@@YAXXZ
wcsstr
memmove
??3@YAXPAX@Z
??1type_info@@UAE@XZ
_wcsupr
wcscpy
wcscat
wcstoul
malloc
??2@YAPAXI@Z
_adjust_fdiv
_onexit
vswprintf
_purecall
wcscmp
wcslen
wcsrchr

certcli

CAGetCertTypeProperty
CASetCertTypeProperty
CAFindCertTypeByName
CAEnumNextCertType
CAFindByName
CAUpdateCertType
CAFreeCertTypeExtensions
CAFreeCertTypeProperty
CASetCertTypeKeySpec
CAGetCAProperty
CAEnumCertTypes
CAEnumCertTypesForCA
CARemoveCACertificateType
CAGetCertTypeFlags
CACertTypeGetSecurity
CAAddCACertificateType
CAGetCertTypeKeySpec
CAGetCertTypePropertyEx
CAFreeCAProperty
CACloseCA
CACloseCertType
CAUpdateCA
CAGetCertTypeExtensions
CACreateCertType
CASetCertTypeFlags
CASetCertTypeExtension
CACertTypeSetSecurity

kernel32

lstrlenW
SetUnhandledExceptionFilter
GlobalLock
CloseHandle
RemoveDirectoryA
FormatMessageW
FileTimeToSystemTime
GetModuleFileNameW
GetProcAddress
GetStartupInfoA
WideCharToMultiByte
QueryPerformanceCounter
SetLastError
IsBadReadPtr
GetDateFormatW
GetTickCount
OutputDebugStringW
lstrcpyW
GetCurrentProcess
InitializeCriticalSection
CreateFileW
GlobalUnlock
GetSystemTimeAsFileTime
lstrcmpiW
IsValidCodePage
GetSystemWindowsDirectoryW
LoadLibraryW
GetLastError
LocalReAlloc
GetEnvironmentStringsA
GetModuleHandleA
GetACP
GetComputerNameW
LocalFree
InterlockedIncrement
GlobalAlloc
OutputDebugStringA
GlobalFree
DeleteCriticalSection
FileTimeToLocalFileTime
InterlockedDecrement

user32

GetParent
SendMessageW
GetDC
SetFocus
SetWindowTextW
EnableWindow
InsertMenuItemW
PostMessageW
GetDlgItemTextA
EndDialog
wsprintfW
SystemParametersInfoW
SetWindowLongW
DialogBoxParamW
LoadStringW
LoadImageW
ReleaseDC
LoadCursorW
GetDlgItem
SendDlgItemMessageW
RegisterClipboardFormatW
SetCursor
MessageBoxW
WinHelpW
LoadIconW
GetWindowLongW
LoadBitmapW
SetDlgItemTextW

advapi32

RegDeleteValueW
RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW

gdi32

GetDeviceCaps
DeleteObject
CreateFontIndirectW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 417KB - Virtual size: 416KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 214KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e2c3aa41d3b80081f0226058da2d3ae

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

certcli

kernel32

user32

advapi32

gdi32

comctl32

Sections

.text Size: 417KB - Virtual size: 416KB

.rdata Size: 124KB - Virtual size: 123KB

.data Size: 214KB - Virtual size: 1.7MB

.rsrc Size: 124KB - Virtual size: 124KB

.reloc Size: 1024B - Virtual size: 900B

.text
Size: 417KB - Virtual size: 416KB

.rdata
Size: 124KB - Virtual size: 123KB

.data
Size: 214KB - Virtual size: 1.7MB

.rsrc
Size: 124KB - Virtual size: 124KB

.reloc
Size: 1024B - Virtual size: 900B