ae9cbbb8a04b766b50e44e560676043ef830180a1f31ea72bc90bb1c4673a86e

Sharing

Copy URL

Twitter E-mail

General

Target

ae9cbbb8a04b766b50e44e560676043ef830180a1f31ea72bc90bb1c4673a86e
Size

98KB
MD5

bf4ef056aa83e7dfd9513a0e316a69d5
SHA1

c48570d2c44f62b667d3a6466d119bb380b85c88
SHA256

ae9cbbb8a04b766b50e44e560676043ef830180a1f31ea72bc90bb1c4673a86e
SHA512

8e6aa8fc2b9d35ed7dc57b1f2bfe67dd0dee6ce96f9c2d6091395c2aa09b975415841e6b88742aba7c49dda2816406f14c46012effd8d93781630e83841d7687
SSDEEP

1536:KCh8VJn7xwwptSnsFEDTo3jOeIPmhqY9NL0mGnBgOFRppfmGekaJaTs:KRV5RTSns+ToKeIPm3NIBgOb9as

Score

N/A

Malware Config

Signatures

Files

ae9cbbb8a04b766b50e44e560676043ef830180a1f31ea72bc90bb1c4673a86e
.exe windows x86

b989f799d79e1732d209ad13ff54d6b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
FormatMessageW
InterlockedIncrement
GetComputerNameW
GetSystemWindowsDirectoryW
LoadLibraryW
FileTimeToLocalFileTime
GetLastError
InitializeCriticalSection
OutputDebugStringA
OutputDebugStringW
GlobalUnlock
QueryPerformanceCounter
GetEnvironmentStringsW
GlobalFree
GetTickCount
GetModuleHandleA
DeleteCriticalSection
WideCharToMultiByte
GetModuleFileNameW
GetCurrentThread
CloseHandle
SetUnhandledExceptionFilter
FileTimeToSystemTime
IsBadReadPtr
GlobalAlloc
GetProcAddress
CreateFileW
GetSystemDefaultLangID
GetCPInfo
InterlockedDecrement
LocalFree
lstrcpyW
GlobalLock
GetSystemTimeAsFileTime
lstrlenW
GetDateFormatW
SetLastError
LocalReAlloc
lstrcmpiW
GetStartupInfoA

user32

SetFocus
GetDlgItem
EndDialog
SetWindowLongW
SendMessageW
InsertMenuItemW
WinHelpW
SendDlgItemMessageW
LoadBitmapW
GetDlgItemTextA
MessageBoxW
SetWindowTextW
LoadIconW
LoadImageW
EnableWindow
LoadStringW
SetDlgItemTextW
RegisterClipboardFormatW
GetParent
GetWindowLongW
SetCursor
SystemParametersInfoW
wsprintfW
DialogBoxParamW
ReleaseDC
LoadCursorW
GetDC
PostMessageW

certcli

CAUpdateCA
CACreateCertType
CAGetCertTypeFlags
CACertTypeGetSecurity
CARemoveCACertificateType
CASetCertTypeExtension
CAGetCertTypePropertyEx
CAAddCACertificateType
CAEnumCertTypesForCA
CASetCertTypeProperty
CACloseCA
CAFreeCAProperty
CAEnumNextCertType
CAGetCertTypeExtensions
CAFindCertTypeByName
CAGetCAProperty
CAGetCertTypeProperty
CAEnumCertTypes
CASetCertTypeFlags
CAFindByName
CAFreeCertTypeExtensions
CACloseCertType
CAGetCertTypeKeySpec
CAUpdateCertType
CACertTypeSetSecurity
CAFreeCertTypeProperty
CASetCertTypeKeySpec

advapi32

RegDeleteKeyW
RegSetValueExW
RegDeleteValueW
RegCloseKey
RegOpenKeyExW
RegEnumKeyExW
RegCreateKeyExW
RegQueryValueExW

msvcrt

__RTDynamicCast
__dllonexit
wcslen
??1type_info@@UAE@XZ
vswprintf
wcscmp
wcsstr
memmove
_wcsicmp
_except_handler3
mbstowcs
free
??2@YAPAXI@Z
wcscat
_initterm
?terminate@@YAXXZ
_wcsupr
wcschr
wcstoul
??3@YAXPAX@Z
_onexit
_adjust_fdiv
malloc
wcsrchr
wcscpy

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b989f799d79e1732d209ad13ff54d6b5

Headers

File Characteristics

Imports

kernel32

user32

certcli

advapi32

msvcrt

comctl32

Sections

.text Size: 44KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 85KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 44KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 85KB

.rsrc
Size: 23KB - Virtual size: 22KB