54f818c6a97f1553c36cc34df9dd34bdd81c73819323cc47a2bb15f613da7431

Sharing

Copy URL Twitter E-mail

General

Target

54f818c6a97f1553c36cc34df9dd34bdd81c73819323cc47a2bb15f613da7431
Size

99KB
MD5

2aa90cda98bdf95798ffe8ff39a1e5bc
SHA1

f885d7ce17891f754b62eef143b07f1744264886
SHA256

54f818c6a97f1553c36cc34df9dd34bdd81c73819323cc47a2bb15f613da7431
SHA512

99a980ef102c287bd31ec1ed58a9db4feb0fbee29962c6332404ef63df15963f8754e10febd9eb6721a8cc32f19b5a9d5685b3b2dd24d6ce9e065a548e08b4b5
SSDEEP

3072:bbHTVgB1+cngckcsZzeykjPpnlBr0p6zzz:bDTV+gSgyIqjPN0

Score

N/A

Malware Config

Signatures

Files

54f818c6a97f1553c36cc34df9dd34bdd81c73819323cc47a2bb15f613da7431
.exe windows x86

f068bf4d605cb4f5582b445e42ab3649

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExW
RegDeleteKeyW
RegSetValueExW
RegQueryValueExW
RegCloseKey
RegEnumKeyExW
RegDeleteValueW
RegOpenKeyExW

kernel32

GlobalAlloc
IsBadReadPtr
SetLastError
GetSystemWindowsDirectoryW
GetLastError
GetACP
GlobalFree
CloseHandle
OutputDebugStringA
GetSystemTimeAsFileTime
GetEnvironmentStringsW
QueryPerformanceCounter
FormatMessageW
LocalReAlloc
GlobalUnlock
lstrcpyW
lstrcmpiW
RemoveDirectoryW
GlobalLock
FileTimeToSystemTime
SetUnhandledExceptionFilter
GetEnvironmentStringsA
WideCharToMultiByte
GetCurrentProcess
GetProcessId
GetComputerNameW
LocalFree
FileTimeToLocalFileTime
GetTickCount
InitializeCriticalSection
LoadLibraryW
GetStartupInfoA
DeleteCriticalSection
lstrlenW
GetModuleFileNameW
CreateFileW
IsValidCodePage
GetModuleHandleA
InterlockedDecrement
InterlockedIncrement
OutputDebugStringW
GetDateFormatW

certcli

CAGetCertTypeExtensions
CAFreeCertTypeProperty
CAFindByName
CAEnumNextCertType
CASetCertTypeProperty
CASetCertTypeExtension
CARemoveCACertificateType
CAEnumCertTypes
CASetCertTypeFlags
CAUpdateCertType
CAGetCertTypeFlags
CASetCertTypeKeySpec
CAEnumCertTypesForCA
CACloseCA
CAFreeCAProperty
CAUpdateCA
CAFreeCertTypeExtensions
CACloseCertType
CACertTypeGetSecurity
CAAddCACertificateType
CACertTypeSetSecurity
CAGetCAProperty
CAFindCertTypeByName
CACreateCertType
CAGetCertTypeKeySpec
CAGetCertTypeProperty
CAGetCertTypePropertyEx

user32

GetWindowLongW
MessageBoxW
DialogBoxParamW
WinHelpW
LoadCursorW
RegisterClipboardFormatW
LoadBitmapW
wsprintfW
SetDlgItemTextW
SetCursor
SetWindowLongW
LoadImageW
LoadStringW
SetFocus
ReleaseDC
SystemParametersInfoW
InsertMenuItemW
LoadIconW
EndDialog
GetDlgItemTextA
GetParent
GetDlgItem
GetDC
SendMessageW
EnableWindow
SetWindowTextW
SendDlgItemMessageW
PostMessageW

msvcrt

_except_handler3
wcsstr
mbstowcs
vswprintf
_wcsupr
?terminate@@YAXXZ
_initterm
??1type_info@@UAE@XZ
__RTDynamicCast
wcschr
_onexit
wcscat
wcstoul
wcscpy
__dllonexit
wcscmp
_purecall
??3@YAXPAX@Z
_adjust_fdiv
_wcsicmp
??2@YAPAXI@Z
wcslen
free
malloc
memmove
wcsrchr

gdi32

DeleteObject
GetDeviceCaps
CreateFontIndirectW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f068bf4d605cb4f5582b445e42ab3649

Headers

File Characteristics

Imports

advapi32

kernel32

certcli

user32

msvcrt

gdi32

comctl32

Sections

.text Size: 43KB - Virtual size: 42KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 115KB

.rsrc Size: 25KB - Virtual size: 24KB

.text
Size: 43KB - Virtual size: 42KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 115KB

.rsrc
Size: 25KB - Virtual size: 24KB