2d384d3373c2de62940161f34794fd35f87baf851fd243c29cb821634d0af5fd

Sharing

Copy URL Twitter E-mail

General

Target

2d384d3373c2de62940161f34794fd35f87baf851fd243c29cb821634d0af5fd
Size

99KB
MD5

e956d793da7a0baf4ba045579db24788
SHA1

d62f07fcdaf6707eae70e96714b475fdf464d6af
SHA256

2d384d3373c2de62940161f34794fd35f87baf851fd243c29cb821634d0af5fd
SHA512

ddad09129211cefb0edf278a84e17bcdcd59ab7ff047edf0e7b52495bc877b2906278be2e536980d2a7c30e9717c99ddaff47716fabd4a8730ad3c5dfe66bcc8
SSDEEP

3072:/6XLMrywdpdyjIXMdy5okDAXLOJVkUBOGVaIqgkKh:S7WyApgjgM45LDAXLgkUBnaIWK

Score

N/A

Malware Config

Signatures

Files

2d384d3373c2de62940161f34794fd35f87baf851fd243c29cb821634d0af5fd
.exe windows x86

b61fda8081767ef38d83ea5de64b05e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcslen
_except_handler3
wcschr
wcstoul
__RTDynamicCast
free
wcscmp
wcsrchr
wcsstr
__dllonexit
_wcsupr
?terminate@@YAXXZ
??3@YAXPAX@Z
_purecall
_onexit
wcscpy
_adjust_fdiv
memmove
vswprintf
wcscat
_wcsicmp
??2@YAPAXI@Z
malloc
mbstowcs
_initterm
??1type_info@@UAE@XZ

gdi32

GetDeviceCaps
DeleteObject
CreateFontIndirectW

kernel32

GetModuleHandleA
WideCharToMultiByte
LoadLibraryW
FileTimeToLocalFileTime
CloseHandle
FormatMessageW
GetComputerNameW
CreateFileW
GlobalLock
LocalReAlloc
OutputDebugStringA
InterlockedIncrement
QueryPerformanceCounter
GetEnvironmentStringsW
GetModuleFileNameW
RemoveDirectoryW
SetUnhandledExceptionFilter
DeleteCriticalSection
GlobalFree
GlobalAlloc
SetLastError
GetTickCount
GetLastError
GlobalUnlock
lstrcpyW
lstrlenW
InterlockedDecrement
lstrcmpiW
LocalFree
InitializeCriticalSection
GetSystemDefaultLangID
GetSystemTimeAsFileTime
GetSystemWindowsDirectoryW
OutputDebugStringW
IsBadReadPtr
GetStartupInfoA
GetCurrentProcess
FileTimeToSystemTime
GetACP
GetDateFormatW

advapi32

RegOpenKeyExW
RegCreateKeyExW
RegEnumKeyExW
RegDeleteValueW
RegCloseKey
RegSetValueExW
RegDeleteKeyW
RegQueryValueExW

user32

DialogBoxParamW
wsprintfW
GetDC
GetWindowLongW
LoadStringW
RegisterClipboardFormatW
SendMessageW
GetDlgItem
LoadIconW
SetWindowLongW
ReleaseDC
EndDialog
MessageBoxW
InsertMenuItemW
SetWindowTextW
SetDlgItemTextW
SendDlgItemMessageW
GetParent
GetDlgItemTextA
LoadCursorW
PostMessageW
LoadImageW
SystemParametersInfoW
LoadBitmapW
SetCursor
EnableWindow
WinHelpW
SetFocus

certcli

CACloseCA
CASetCertTypeProperty
CAFindByName
CAFreeCAProperty
CAGetCAProperty
CAUpdateCA
CACreateCertType
CASetCertTypeFlags
CACloseCertType
CARemoveCACertificateType
CASetCertTypeExtension
CAFreeCertTypeExtensions
CAGetCertTypeKeySpec
CAUpdateCertType
CACertTypeSetSecurity
CAEnumCertTypes
CACertTypeGetSecurity
CAEnumCertTypesForCA
CAGetCertTypeExtensions
CAEnumNextCertType
CAAddCACertificateType
CAGetCertTypeProperty
CAGetCertTypeFlags
CASetCertTypeKeySpec
CAGetCertTypePropertyEx
CAFindCertTypeByName
CAFreeCertTypeProperty

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b61fda8081767ef38d83ea5de64b05e5

Headers

File Characteristics

Imports

msvcrt

gdi32

kernel32

advapi32

user32

certcli

comctl32

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 72KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 72KB

.rsrc
Size: 23KB - Virtual size: 22KB