2bb2c4a97e7ae0b3f98d240f377f90c740d4a605d0a00bda5e32aba61666c971

Sharing

Copy URL Twitter E-mail

General

Target

2bb2c4a97e7ae0b3f98d240f377f90c740d4a605d0a00bda5e32aba61666c971
Size

195KB
MD5

3dbc809ae52a6c5e22647039e99e46b0
SHA1

08e0ee63d363ac09624c0be0914a8cd05a766848
SHA256

2bb2c4a97e7ae0b3f98d240f377f90c740d4a605d0a00bda5e32aba61666c971
SHA512

92f8ee3b94f713a76aac9ba1a635b05a445862d09b2f123fd9c4035e2ccca68a04ba225caf56ee24222a69bee7faaaa35b0e2ce9cf83db1548b911b1b3eff2df
SSDEEP

6144:YKw10AC8KPt3gty4kunnyXkMjPcC9g1Jk1:Y710AC8KPAVMjPba1A

Score

N/A

Malware Config

Signatures

Files

2bb2c4a97e7ae0b3f98d240f377f90c740d4a605d0a00bda5e32aba61666c971
.exe windows x86

14913bc0c858651349010d12a6a29909

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadImageW
RegisterClipboardFormatW
GetDlgItemTextA
LoadIconW
SetDlgItemTextW
GetDC
LoadBitmapW
GetParent
EndDialog
EnableWindow
SetWindowLongW
SetCursor
GetWindowLongW
LoadCursorW
SendDlgItemMessageW
SendMessageW
wsprintfW
LoadStringW
WinHelpW
ReleaseDC
MessageBoxW
DialogBoxParamW
InsertMenuItemW
SystemParametersInfoW
PostMessageW
SetWindowTextW
SetFocus
GetDlgItem

kernel32

RemoveDirectoryA
GlobalLock
InitializeCriticalSection
GetCurrentProcess
OutputDebugStringA
GetLastError
lstrcpyW
GetTickCount
SetLastError
OutputDebugStringW
GetSystemTimeAsFileTime
IsValidCodePage
FileTimeToLocalFileTime
WideCharToMultiByte
GetProcAddress
GetModuleFileNameW
LocalReAlloc
GetModuleHandleA
GlobalFree
GetACP
IsBadReadPtr
DeleteCriticalSection
lstrlenW
GlobalUnlock
lstrcmpiW
SetUnhandledExceptionFilter
LocalFree
QueryPerformanceCounter
GlobalAlloc
InterlockedIncrement
CloseHandle
GetComputerNameW
FormatMessageW
FileTimeToSystemTime
CreateFileW
GetEnvironmentStringsA
GetSystemWindowsDirectoryW
LoadLibraryW
InterlockedDecrement
GetDateFormatW
GetStartupInfoA

gdi32

DeleteObject
CreateFontIndirectW
GetDeviceCaps

msvcrt

wcscat
wcscmp
wcslen
??3@YAXPAX@Z
_wcsupr
wcsstr
wcscpy
memmove
malloc
wcsrchr
wcschr
??2@YAPAXI@Z
_wcsicmp
__dllonexit
vswprintf
wcstoul
_initterm
mbstowcs
__RTDynamicCast
_except_handler3
_adjust_fdiv
free
_onexit
?terminate@@YAXXZ
_purecall
??1type_info@@UAE@XZ

certcli

CAEnumCertTypes
CAEnumCertTypesForCA
CAGetCertTypeProperty
CAAddCACertificateType
CAGetCAProperty
CAGetCertTypeFlags
CACertTypeGetSecurity
CAGetCertTypeKeySpec
CAUpdateCertType
CAFindByName
CAFreeCertTypeExtensions
CAFindCertTypeByName
CAGetCertTypeExtensions
CAUpdateCA
CAFreeCAProperty
CASetCertTypeFlags
CAEnumNextCertType
CASetCertTypeKeySpec
CACloseCertType
CARemoveCACertificateType
CAGetCertTypePropertyEx
CASetCertTypeProperty
CAFreeCertTypeProperty
CASetCertTypeExtension
CACreateCertType
CACertTypeSetSecurity
CACloseCA

advapi32

RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegCloseKey
RegDeleteValueW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.code
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 50KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

14913bc0c858651349010d12a6a29909

Headers

File Characteristics

Imports

user32

kernel32

gdi32

msvcrt

certcli

advapi32

comctl32

Sections

.code Size: 71KB - Virtual size: 70KB

.rdata Size: 50KB - Virtual size: 135KB

.data Size: 70KB - Virtual size: 70KB

.rsrc Size: 2KB - Virtual size: 1KB

.code
Size: 71KB - Virtual size: 70KB

.rdata
Size: 50KB - Virtual size: 135KB

.data
Size: 70KB - Virtual size: 70KB

.rsrc
Size: 2KB - Virtual size: 1KB