822f3e016cdcd5c3d9d0f56341754de1b9586ffa6c647360c4ebc1cece9613dd

Sharing

Copy URL Twitter E-mail

General

Target

822f3e016cdcd5c3d9d0f56341754de1b9586ffa6c647360c4ebc1cece9613dd
Size

272KB
MD5

22a9de318172a3d43b7e07323b3ada5c
SHA1

ad054d9205cdd8868deb8e2bb52a0c7b70075f1d
SHA256

822f3e016cdcd5c3d9d0f56341754de1b9586ffa6c647360c4ebc1cece9613dd
SHA512

b0ec35ce1b727d8c3df6758683c6f2568865d5a38f78a7c9037e380c3435ae1ab23859cff2a3ea68b9caf2b0a58733a041fefb9d42ef8ad7d98bca3c9ba4bb99
SSDEEP

6144:Hl6RWBdZVb2mZriTgY6WvhgyV5SMRWd4BQcP3:FoaHVqmr9mbZd

Score

N/A

Malware Config

Signatures

Files

822f3e016cdcd5c3d9d0f56341754de1b9586ffa6c647360c4ebc1cece9613dd
.exe windows x86

32d24ee733b608c4acadbd03b961a557

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

HBRUSH_UserSize
GetRunningObjectTable
CoInstall
HWND_UserSize
HICON_UserSize
OleSaveToStream
CoLoadLibrary
OleCreateFromFileEx
OleSetClipboard
CoInitializeSecurity
OleGetIconOfFile
CreateErrorInfo
CoQueryClientBlanket

hhsetup

?AddFolder@CCollection@@QAEPAVCFolder@@PBDKPAKG@Z
?WriteFolder@CCollection@@AAEHPAPAVCFolder@@@Z
?MergeKeywords@CCollection@@QAEHPAD@Z
?SetId@CLocation@@QAEXPBD@Z
?SetPath@CLocation@@QAEXPBD@Z
?RemoveCollection@CCollection@@QAEKH@Z
?GetTitle@CFolder@@QAEPADXZ
?GetIdW@CTitle@@QAEPBGXZ
?SetTitle@CLocation@@QAEXPBG@Z

catsrvut

??4CComPlusMethod@@QAEAAV0@ABV0@@Z
?GetITypeLib@CComPlusTypelib@@QAEPAUITypeLib@@XZ
??4CComPlusInterface@@QAEAAV0@ABV0@@Z
??_7CComPlusObject@@6B@
??0CComPlusObject@@QAE@ABV0@@Z
RegDBRestore
??_7CComPlusMethod@@6B@
??4CComPlusTypelib@@QAEAAV0@ABV0@@Z
QueryUserDllW
??4CComPlusObject@@QAEAAV0@ABV0@@Z

crypt32

CryptSIPVerifyIndirectData
CryptLoadSip
CryptMsgVerifyCountersignatureEncoded
CryptGetMessageCertificates
CertVerifyCTLUsage
CertOpenSystemStoreA
CryptProtectData
CertAddEncodedCertificateToStore
CryptMsgControl
CertEnumSystemStore
I_CryptGetDefaultCryptProvForEncrypt
CertGetPublicKeyLength
I_CryptFlushLruCache
CryptExportPublicKeyInfoEx

gdi32

GetDeviceGammaRamp
GdiGetLocalBrush
GdiEntry5
GdiDescribePixelFormat
RemoveFontResourceExW

kernel32

DeleteFileA
GlobalFindAtomW
WriteConsoleW
LCMapStringA
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetProfileSectionW
LoadLibraryA

Sections

.text
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32d24ee733b608c4acadbd03b961a557

Headers

File Characteristics

Imports

ole32

hhsetup

catsrvut

crypt32

gdi32

kernel32

Sections

.text Size: 127KB - Virtual size: 126KB

.rdata Size: 61KB - Virtual size: 61KB

.data Size: 41KB - Virtual size: 41KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 127KB - Virtual size: 126KB

.rdata
Size: 61KB - Virtual size: 61KB

.data
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 40KB - Virtual size: 39KB