d796540520fe7225f09fd9ca626be8bd2c83be29f471d4e4dcd40e17ebaff687

Sharing

Copy URL Twitter E-mail

General

Target

d796540520fe7225f09fd9ca626be8bd2c83be29f471d4e4dcd40e17ebaff687
Size

102KB
MD5

7e222ee72883812c4aca85c52b9d137a
SHA1

9071e4a6cbca07850d9b96222e5d98eedca198e3
SHA256

d796540520fe7225f09fd9ca626be8bd2c83be29f471d4e4dcd40e17ebaff687
SHA512

4e41546dd1e30381bc57ab9fb1fa297e0dea4f6de157ab0faa7d028c93cd3945144a2dc808fc3c3f428d7fcd1ce08cf11261e91a11b7144824c484e74f2b8f2f
SSDEEP

1536:96fBR96OMZkGkDAkwOJDNLGH2hRHvEweVnU9/3GKjDj53rjqEgapd0X:9y967M73/GH2hJreVna/WQrjqE7pd

Score

N/A

Malware Config

Signatures

Files

d796540520fe7225f09fd9ca626be8bd2c83be29f471d4e4dcd40e17ebaff687
.exe windows x86

0d5f5e4d4953da32cde85f0930209d9a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OutputDebugStringA
FileTimeToSystemTime
LocalFree
lstrcpyW
WideCharToMultiByte
GetSystemTimeAsFileTime
GlobalUnlock
CreateFileW
InterlockedIncrement
SetLastError
LocalReAlloc
GetModuleFileNameW
FileTimeToLocalFileTime
GetModuleHandleA
GetCurrentThread
lstrlenW
IsBadReadPtr
GlobalLock
GlobalAlloc
GetEnvironmentStringsW
DeleteCriticalSection
GetCurrentProcess
CloseHandle
GetLastError
LoadLibraryW
GetSystemDefaultLangID
InitializeCriticalSection
GetSystemWindowsDirectoryW
GetDateFormatW
GetProcAddress
SetUnhandledExceptionFilter
GlobalFree
QueryPerformanceCounter
GetCPInfo
GetTickCount
OutputDebugStringW
InterlockedDecrement
FormatMessageW
lstrcmpiW
GetComputerNameW
GetStartupInfoA

msvcrt

wcscat
?terminate@@YAXXZ
wcsrchr
wcscpy
??2@YAPAXI@Z
wcscmp
_wcsicmp
_except_handler3
??1type_info@@UAE@XZ
wcsstr
wcschr
free
wcslen
malloc
__dllonexit
_onexit
mbstowcs
vswprintf
_initterm
__RTDynamicCast
_adjust_fdiv
_wcsupr
??3@YAXPAX@Z
memmove
wcstoul

user32

SendMessageW
LoadCursorW
SystemParametersInfoW
DialogBoxParamW
SetDlgItemTextW
LoadImageW
InsertMenuItemW
LoadStringW
SetWindowLongW
GetDlgItem
GetParent
GetDC
ReleaseDC
PostMessageW
WinHelpW
SetWindowTextW
EndDialog
GetDlgItemTextA
LoadBitmapW
wsprintfW
EnableWindow
SetFocus
LoadIconW
RegisterClipboardFormatW
SetCursor
MessageBoxW
GetWindowLongW
SendDlgItemMessageW

certcli

CASetCertTypeKeySpec
CAUpdateCertType
CARemoveCACertificateType
CAFreeCertTypeExtensions
CASetCertTypeFlags
CACloseCA
CAFindCertTypeByName
CASetCertTypeExtension
CAFindByName
CAGetCertTypeFlags
CAUpdateCA
CAGetCertTypeKeySpec
CACertTypeGetSecurity
CAAddCACertificateType
CAGetCertTypePropertyEx
CAGetCertTypeProperty
CACreateCertType
CAGetCertTypeExtensions
CAGetCAProperty
CAFreeCAProperty
CAEnumCertTypesForCA
CASetCertTypeProperty
CAEnumCertTypes
CACloseCertType
CAEnumNextCertType
CACertTypeSetSecurity
CAFreeCertTypeProperty

advapi32

RegCreateKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegQueryValueExW
RegDeleteValueW
RegCloseKey
RegOpenKeyExW
RegSetValueExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d5f5e4d4953da32cde85f0930209d9a

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

certcli

advapi32

comctl32

Sections

.text Size: 46KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 114KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 46KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 114KB

.rsrc
Size: 24KB - Virtual size: 24KB