107e99f3e192690f1f1e38558bf45a724a2ce7d8530a8f0f4945d4e7d267feef

Sharing

Copy URL Twitter E-mail

General

Target

107e99f3e192690f1f1e38558bf45a724a2ce7d8530a8f0f4945d4e7d267feef
Size

885KB
MD5

0d055962aa44e599b8c3010b79b13e70
SHA1

778045fca8b8350d12daf2f1c72db9b519a53f30
SHA256

107e99f3e192690f1f1e38558bf45a724a2ce7d8530a8f0f4945d4e7d267feef
SHA512

d364dbd84818ef0c14e126f9d7b45193f5f71f1211ed5adee28fef55c0cd19903923534737b6ce757fbe622c988c348f8c1fe723ecebbbc711c1477d4a5592ca
SSDEEP

24576:3rzRPVtS4imhARYkzof8OB8Fa9yvgSPXXhEyWO+m:79Nt/CRYT3byIAEyWO

Score

N/A

Malware Config

Signatures

Files

107e99f3e192690f1f1e38558bf45a724a2ce7d8530a8f0f4945d4e7d267feef
.exe windows x86

09d44207abf2c073e643cf81118d2c63

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStringsA
GetSystemWindowsDirectoryW
lstrcmpiW
GetCurrentProcess
GetComputerNameW
GetModuleHandleA
GlobalUnlock
DeleteCriticalSection
IsValidCodePage
LoadLibraryW
WideCharToMultiByte
GetModuleFileNameW
RemoveDirectoryA
lstrcpyW
LocalReAlloc
GetACP
InterlockedIncrement
GlobalAlloc
IsBadReadPtr
GetProcAddress
OutputDebugStringW
FileTimeToSystemTime
CloseHandle
GetTickCount
GlobalLock
InitializeCriticalSection
CreateFileW
GetLastError
SetLastError
InterlockedDecrement
QueryPerformanceCounter
GetSystemTimeAsFileTime
FormatMessageW
GetStartupInfoA
lstrlenW
OutputDebugStringA
SetUnhandledExceptionFilter
GlobalFree
GetDateFormatW
LocalFree
FileTimeToLocalFileTime

msvcrt

vswprintf
?terminate@@YAXXZ
wcstoul
mbstowcs
memmove
wcsrchr
_wcsicmp
_adjust_fdiv
malloc
_initterm
wcsstr
wcslen
??1type_info@@UAE@XZ
_except_handler3
__RTDynamicCast
??2@YAPAXI@Z
??3@YAXPAX@Z
wcscat
_onexit
free
_wcsupr
__dllonexit
wcschr
wcscpy
wcscmp
_purecall

certcli

CAFindCertTypeByName
CAGetCertTypeFlags
CASetCertTypeProperty
CASetCertTypeFlags
CAGetCAProperty
CACertTypeGetSecurity
CAEnumNextCertType
CACreateCertType
CAEnumCertTypes
CAGetCertTypePropertyEx
CAFreeCAProperty
CAFreeCertTypeProperty
CAUpdateCertType
CASetCertTypeExtension
CARemoveCACertificateType
CAAddCACertificateType
CACloseCertType
CAFreeCertTypeExtensions
CACertTypeSetSecurity
CAEnumCertTypesForCA
CAGetCertTypeKeySpec
CAFindByName
CAUpdateCA
CAGetCertTypeProperty
CAGetCertTypeExtensions
CACloseCA
CASetCertTypeKeySpec

advapi32

RegCreateKeyExW
RegDeleteValueW
RegOpenKeyExW
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW
RegQueryValueExW
RegCloseKey

user32

SetWindowLongW
ReleaseDC
GetDlgItem
LoadImageW
LoadStringW
SetFocus
GetParent
LoadCursorW
GetDlgItemTextA
SetDlgItemTextW
LoadIconW
GetWindowLongW
EndDialog
MessageBoxW
PostMessageW
GetDC
SetWindowTextW
RegisterClipboardFormatW
DialogBoxParamW
WinHelpW
EnableWindow
wsprintfW
SendDlgItemMessageW
InsertMenuItemW
LoadBitmapW
SetCursor
SendMessageW
SystemParametersInfoW

comctl32

CreatePropertySheetPageW
PropertySheetW

gdi32

DeleteObject
GetDeviceCaps
CreateFontIndirectW

Sections

.text
Size: 428KB - Virtual size: 428KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 188KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09d44207abf2c073e643cf81118d2c63

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

certcli

advapi32

user32

comctl32

gdi32

Sections

.text Size: 428KB - Virtual size: 428KB

.rdata Size: 132KB - Virtual size: 132KB

.data Size: 188KB - Virtual size: 1.7MB

.rsrc Size: 134KB - Virtual size: 133KB

.reloc Size: 1024B - Virtual size: 680B

.text
Size: 428KB - Virtual size: 428KB

.rdata
Size: 132KB - Virtual size: 132KB

.data
Size: 188KB - Virtual size: 1.7MB

.rsrc
Size: 134KB - Virtual size: 133KB

.reloc
Size: 1024B - Virtual size: 680B