860fd6c494a44c68bdc41d75be8321ff6964f12953869fdb47386404333de075

Sharing

Copy URL Twitter E-mail

General

Target

860fd6c494a44c68bdc41d75be8321ff6964f12953869fdb47386404333de075
Size

882KB
MD5

1cb19c6f1aa8872b70af10d5e10158c0
SHA1

9f2cc995a8778bb7a0aa87c963f12dc3cc242ddc
SHA256

860fd6c494a44c68bdc41d75be8321ff6964f12953869fdb47386404333de075
SHA512

010b465890b0d06862ad7a0f02d2960497faabd0b80b29dacd5d4af592a331f183cafe46ba99e2d2279d25fd7a72db22cbc7289f2f2775e277dc66af90fb033b
SSDEEP

24576:hVlVOj6fDgEDJWbpdcSMVHZZhyNFM9QO:xUIgEoNM3Zwe3

Score

N/A

Malware Config

Signatures

Files

860fd6c494a44c68bdc41d75be8321ff6964f12953869fdb47386404333de075
.exe windows x86

cf5fbe005e611987582cda5b2be6eab2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAFreeCertTypeProperty
CAGetCAProperty
CAFindCertTypeByName
CAAddCACertificateType
CACertTypeSetSecurity
CAFreeCAProperty
CAGetCertTypeExtensions
CASetCertTypeFlags
CASetCertTypeProperty
CAFreeCertTypeExtensions
CASetCertTypeExtension
CARemoveCACertificateType
CAEnumNextCertType
CAGetCertTypeKeySpec
CAEnumCertTypes
CACloseCA
CAEnumCertTypesForCA
CACreateCertType
CACertTypeGetSecurity
CASetCertTypeKeySpec
CAGetCertTypeProperty
CAGetCertTypePropertyEx
CAUpdateCertType
CAFindByName
CACloseCertType
CAUpdateCA
CAGetCertTypeFlags

msvcrt

wcscat
__dllonexit
free
_onexit
__RTDynamicCast
_except_handler3
mbstowcs
wcschr
_wcsicmp
wcsstr
_wcsupr
memmove
_adjust_fdiv
??3@YAXPAX@Z
wcscpy
_purecall
wcsrchr
_initterm
malloc
?terminate@@YAXXZ
wcstoul
??2@YAPAXI@Z
??1type_info@@UAE@XZ
wcslen
wcscmp
vswprintf

kernel32

OutputDebugStringW
GetLastError
FormatMessageW
FileTimeToSystemTime
InterlockedDecrement
SetLastError
GetStartupInfoA
lstrcpyW
GetSystemTimeAsFileTime
GetComputerNameW
GlobalUnlock
CreateFileW
LoadLibraryW
RemoveDirectoryA
lstrlenW
IsBadReadPtr
WideCharToMultiByte
InitializeCriticalSection
GetSystemWindowsDirectoryW
GetEnvironmentStringsA
lstrcmpiW
GlobalLock
GlobalAlloc
CloseHandle
IsValidCodePage
LocalFree
FileTimeToLocalFileTime
DeleteCriticalSection
GetCurrentProcess
GetTickCount
QueryPerformanceCounter
GetModuleFileNameW
SetUnhandledExceptionFilter
InterlockedIncrement
GetDateFormatW
GetModuleHandleA
GlobalFree
OutputDebugStringA
GetProcAddress
LocalReAlloc
GetACP

user32

ReleaseDC
SetDlgItemTextW
LoadBitmapW
SetWindowTextW
LoadImageW
SystemParametersInfoW
SetWindowLongW
GetDlgItemTextA
GetWindowLongW
GetDlgItem
GetParent
GetDC
LoadIconW
MessageBoxW
LoadCursorW
wsprintfW
InsertMenuItemW
EndDialog
WinHelpW
PostMessageW
SendMessageW
RegisterClipboardFormatW
SendDlgItemMessageW
SetCursor
SetFocus
LoadStringW
EnableWindow
DialogBoxParamW

advapi32

RegDeleteKeyW
RegOpenKeyExW
RegEnumKeyExW
RegCreateKeyExW
RegDeleteValueW
RegCloseKey
RegSetValueExW
RegQueryValueExW

gdi32

DeleteObject
GetDeviceCaps
CreateFontIndirectW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 392KB - Virtual size: 392KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 197KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf5fbe005e611987582cda5b2be6eab2

Headers

DLL Characteristics

File Characteristics

Imports

certcli

msvcrt

kernel32

user32

advapi32

gdi32

comctl32

Sections

.text Size: 392KB - Virtual size: 392KB

.rdata Size: 149KB - Virtual size: 149KB

.data Size: 197KB - Virtual size: 1.7MB

.rsrc Size: 141KB - Virtual size: 141KB

.reloc Size: 1024B - Virtual size: 704B

.text
Size: 392KB - Virtual size: 392KB

.rdata
Size: 149KB - Virtual size: 149KB

.data
Size: 197KB - Virtual size: 1.7MB

.rsrc
Size: 141KB - Virtual size: 141KB

.reloc
Size: 1024B - Virtual size: 704B