f14708966820c49c7ab4de0cf0e4659dd2fa6c2309480db556587b2153e94885

Sharing

Copy URL Twitter E-mail

General

Target

f14708966820c49c7ab4de0cf0e4659dd2fa6c2309480db556587b2153e94885
Size

101KB
MD5

1029235b7f82fcb4f33dbb57fd407028
SHA1

2d16b7aa9c1d94bd4b843c3977d7d6ce997079fd
SHA256

f14708966820c49c7ab4de0cf0e4659dd2fa6c2309480db556587b2153e94885
SHA512

849fdfd5c08bef261ab2fea161bf0757af33ad457a878a2432ee24a9bc89e42599651b43cf18d872b853b344bd93494b4bef3837a631e0a9cb3a783269218b43
SSDEEP

3072:qL9y960+6MFevRo/L491I+m/j0yx6KUXDnFZJsZ:qL9y9k6FH1Wx6KM

Score

N/A

Malware Config

Signatures

Files

f14708966820c49c7ab4de0cf0e4659dd2fa6c2309480db556587b2153e94885
.exe windows x86

e9267a9783eeb6ef5a1cf9ad12b07ca6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CACreateCertType
CAUpdateCertType
CACertTypeSetSecurity
CASetCertTypeExtension
CAGetCAProperty
CAGetCertTypeKeySpec
CAEnumNextCertType
CASetCertTypeFlags
CAGetCertTypePropertyEx
CAGetCertTypeExtensions
CACloseCA
CASetCertTypeProperty
CAUpdateCA
CAFreeCertTypeProperty
CACloseCertType
CAGetCertTypeProperty
CAEnumCertTypesForCA
CAAddCACertificateType
CAFreeCertTypeExtensions
CARemoveCACertificateType
CAGetCertTypeFlags
CACertTypeGetSecurity
CAEnumCertTypes
CAFindByName
CAFreeCAProperty
CASetCertTypeKeySpec
CAFindCertTypeByName

user32

LoadStringW
GetDC
InsertMenuItemW
SendMessageW
SetFocus
RegisterClipboardFormatW
MessageBoxW
EndDialog
LoadIconW
PostMessageW
GetDlgItemTextA
LoadBitmapW
LoadCursorW
wsprintfW
GetWindowLongW
SetDlgItemTextW
WinHelpW
SendDlgItemMessageW
DialogBoxParamW
EnableWindow
GetDlgItem
LoadImageW
ReleaseDC
SetWindowLongW
SetCursor
SystemParametersInfoW
GetParent
SetWindowTextW

msvcrt

_adjust_fdiv
_onexit
wcstoul
_wcsupr
__dllonexit
_wcsicmp
malloc
??2@YAPAXI@Z
wcsrchr
vswprintf
wcslen
??1type_info@@UAE@XZ
wcsstr
wcschr
free
??3@YAXPAX@Z
_initterm
?terminate@@YAXXZ
memmove
wcscmp
wcscpy
wcscat
__RTDynamicCast
_except_handler3
mbstowcs

kernel32

GetModuleFileNameW
GetSystemWindowsDirectoryW
GetProcAddress
RemoveDirectoryA
GetCPInfo
DeleteCriticalSection
GetSystemTimeAsFileTime
GetModuleHandleA
GlobalUnlock
FileTimeToSystemTime
GetCurrentProcess
LocalFree
InterlockedDecrement
LoadLibraryW
GlobalLock
IsBadReadPtr
lstrcmpiW
GlobalFree
GetStartupInfoA
InitializeCriticalSection
lstrlenW
OutputDebugStringA
CloseHandle
SetLastError
FormatMessageW
GetSystemDefaultLangID
lstrcpyW
GlobalAlloc
CreateFileW
InterlockedIncrement
FileTimeToLocalFileTime
GetLastError
GetTickCount
OutputDebugStringW
LocalReAlloc
WideCharToMultiByte
SetUnhandledExceptionFilter
GetComputerNameW
GetDateFormatW
QueryPerformanceCounter
GetEnvironmentStringsW

advapi32

RegOpenKeyExW
RegEnumKeyExW
RegCreateKeyExW
RegQueryValueExW
RegCloseKey
RegDeleteValueW
RegSetValueExW
RegDeleteKeyW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9267a9783eeb6ef5a1cf9ad12b07ca6

Headers

File Characteristics

Imports

certcli

user32

msvcrt

kernel32

advapi32

comctl32

Sections

.text Size: 47KB - Virtual size: 47KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 91KB

.rsrc Size: 22KB - Virtual size: 22KB

.text
Size: 47KB - Virtual size: 47KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 91KB

.rsrc
Size: 22KB - Virtual size: 22KB