72e6be28fb618d7406cc3116c0dc56ae83d857f18a10c77d1d878222e31277b0

Sharing

Copy URL Twitter E-mail

General

Target

72e6be28fb618d7406cc3116c0dc56ae83d857f18a10c77d1d878222e31277b0
Size

195KB
MD5

37c864e335600f073b2195b92d745850
SHA1

bd545369bda1b650784be13ee8ea18e96c1d39a8
SHA256

72e6be28fb618d7406cc3116c0dc56ae83d857f18a10c77d1d878222e31277b0
SHA512

6b3ffe1b000459306a9af97b3912b3f786a1d8b91e8851eac34521651ab5ac439ae0f1a4cce3ed7ebfbae1aac96ff257c7403b43c2a4befe2c3331f56585f3c3
SSDEEP

6144:e+MOjf0xmFxcvhKGE/msKcAJYirvbp/uuW0nIgUgMRIVN:o0Fo639iHRlnIHPmVN

Score

N/A

Malware Config

Signatures

Files

72e6be28fb618d7406cc3116c0dc56ae83d857f18a10c77d1d878222e31277b0
.exe windows x86

3de82d459154e22900303769828dd3b3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SystemParametersInfoW
GetDlgItemTextA
ReleaseDC
SetWindowTextW
LoadCursorW
EnableWindow
GetWindowLongW
SetDlgItemTextW
EndDialog
SetWindowLongW
LoadIconW
wsprintfW
SetFocus
GetDlgItem
RegisterClipboardFormatW
LoadImageW
SendMessageW
DialogBoxParamW
LoadStringW
LoadBitmapW
GetDC
SendDlgItemMessageW
PostMessageW
WinHelpW
GetParent
MessageBoxW
SetCursor
InsertMenuItemW

msvcrt

wcsstr
wcsrchr
_wcsupr
wcschr
_adjust_fdiv
wcscmp
vswprintf
_purecall
wcscpy
_initterm
wcstoul
free
wcslen
??2@YAPAXI@Z
_wcsicmp
malloc
_onexit
_except_handler3
__RTDynamicCast
__dllonexit
wcscat
?terminate@@YAXXZ
mbstowcs
??1type_info@@UAE@XZ
??3@YAXPAX@Z
memmove

certcli

CARemoveCACertificateType
CAFreeCertTypeProperty
CASetCertTypeKeySpec
CACertTypeGetSecurity
CASetCertTypeProperty
CAGetCertTypeProperty
CAFreeCAProperty
CACreateCertType
CAFreeCertTypeExtensions
CAEnumCertTypesForCA
CAGetCertTypeExtensions
CAAddCACertificateType
CACloseCA
CACloseCertType
CACertTypeSetSecurity
CAUpdateCertType
CAGetCertTypeKeySpec
CAGetCertTypePropertyEx
CAGetCertTypeFlags
CAEnumCertTypes
CASetCertTypeExtension
CASetCertTypeFlags
CAFindByName
CAGetCAProperty
CAUpdateCA
CAFindCertTypeByName
CAEnumNextCertType

kernel32

InterlockedIncrement
RemoveDirectoryA
SetLastError
GlobalUnlock
GlobalAlloc
WideCharToMultiByte
lstrlenW
GetComputerNameW
IsValidCodePage
QueryPerformanceCounter
CreateFileW
lstrcmpiW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetEnvironmentStringsA
GetTickCount
GetModuleHandleA
LocalReAlloc
InitializeCriticalSection
OutputDebugStringW
InterlockedDecrement
GetCPInfo
GetProcAddress
LoadLibraryW
GetCurrentProcess
GetModuleFileNameW
LocalFree
GetStartupInfoA
GetSystemTimeAsFileTime
CloseHandle
OutputDebugStringA
DeleteCriticalSection
GetACP
FormatMessageW
GlobalLock
IsBadReadPtr
GetLastError
GetDateFormatW
GetSystemWindowsDirectoryW
GlobalFree
SetUnhandledExceptionFilter
lstrcpyW

advapi32

RegQueryValueExW
RegEnumKeyExW
RegCloseKey
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteValueW

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

comctl32

PropertySheetW
CreatePropertySheetPageW

shell32

ShellExecuteExW
ShellExecuteW

Sections

.code
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3de82d459154e22900303769828dd3b3

Headers

File Characteristics

Imports

user32

msvcrt

certcli

kernel32

advapi32

gdi32

comctl32

shell32

Sections

.code Size: 88KB - Virtual size: 88KB

.rdata Size: 103KB - Virtual size: 2.5MB

.rsrc Size: 1KB - Virtual size: 1KB

.code
Size: 88KB - Virtual size: 88KB

.rdata
Size: 103KB - Virtual size: 2.5MB

.rsrc
Size: 1KB - Virtual size: 1KB