5b209aa4eb9817ca5fe4ba27ccf58c97a5b707687541cc193991e440e2c6fda3

Sharing

Copy URL Twitter E-mail

General

Target

5b209aa4eb9817ca5fe4ba27ccf58c97a5b707687541cc193991e440e2c6fda3
Size

99KB
MD5

c2f99b404c3626621f8bf6516c28dd23
SHA1

ea8173b3f6c8c8d9ca7ad883c8410b5617e513e6
SHA256

5b209aa4eb9817ca5fe4ba27ccf58c97a5b707687541cc193991e440e2c6fda3
SHA512

2e1fb144a6c0a935689ccaed948a2b8e4961af6619817e7a4662261ac7abc470384af09d7e4ef3233e881736b2f3ff71655576f72cf59da72e196a00f920fd12
SSDEEP

3072:ybxhJRajeSCChkA1kpSaRw0E0jYwWbd9ksM0DjEPhu:ybxhJgjenwkoc7wST8pjb

Score

N/A

Malware Config

Signatures

Files

5b209aa4eb9817ca5fe4ba27ccf58c97a5b707687541cc193991e440e2c6fda3
.exe windows x86

3140db35a655ba986a1a0452f3e9f197

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcscmp
_initterm
malloc
_adjust_fdiv
wcslen
_onexit
memmove
wcscpy
free
_wcsupr
mbstowcs
??1type_info@@UAE@XZ
_wcsicmp
?terminate@@YAXXZ
wcsrchr
__RTDynamicCast
wcschr
wcsstr
__dllonexit
_except_handler3
??2@YAPAXI@Z
wcstoul
vswprintf
??3@YAXPAX@Z
wcscat

kernel32

CloseHandle
GetEnvironmentStringsW
SetUnhandledExceptionFilter
LoadLibraryW
GlobalLock
InitializeCriticalSection
LocalReAlloc
lstrlenW
GetStartupInfoA
GetCurrentThread
FormatMessageW
GlobalAlloc
GetLastError
GetTickCount
CreateFileW
IsBadReadPtr
lstrcpyW
QueryPerformanceCounter
LocalFree
FileTimeToSystemTime
GetModuleFileNameW
WideCharToMultiByte
SetLastError
GetCPInfo
InterlockedIncrement
lstrcmpiW
GetSystemTimeAsFileTime
GetComputerNameW
FileTimeToLocalFileTime
OutputDebugStringA
DeleteCriticalSection
GetSystemDefaultLangID
GlobalFree
GetProcAddress
GetCurrentProcess
InterlockedDecrement
GetModuleHandleA
GetSystemWindowsDirectoryW
GlobalUnlock
OutputDebugStringW
GetDateFormatW

advapi32

RegDeleteValueW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW

user32

SendMessageW
EnableWindow
SetCursor
SetFocus
RegisterClipboardFormatW
LoadBitmapW
SetDlgItemTextW
SetWindowTextW
GetDC
GetParent
SystemParametersInfoW
SendDlgItemMessageW
ReleaseDC
GetWindowLongW
GetDlgItemTextA
EndDialog
MessageBoxW
PostMessageW
InsertMenuItemW
GetDlgItem
LoadStringW
LoadImageW
SetWindowLongW
wsprintfW
LoadCursorW
WinHelpW
LoadIconW
DialogBoxParamW

certcli

CAFreeCertTypeExtensions
CAGetCertTypeProperty
CAEnumNextCertType
CAFindByName
CACloseCA
CAGetCertTypeFlags
CAFreeCAProperty
CACertTypeSetSecurity
CAEnumCertTypesForCA
CACreateCertType
CAUpdateCA
CARemoveCACertificateType
CACloseCertType
CASetCertTypeFlags
CASetCertTypeProperty
CAGetCertTypeExtensions
CAGetCertTypeKeySpec
CASetCertTypeKeySpec
CAAddCACertificateType
CACertTypeGetSecurity
CAUpdateCertType
CASetCertTypeExtension
CAFreeCertTypeProperty
CAEnumCertTypes
CAGetCertTypePropertyEx
CAGetCAProperty
CAFindCertTypeByName

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3140db35a655ba986a1a0452f3e9f197

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

user32

certcli

comctl32

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 89KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 89KB

.rsrc
Size: 23KB - Virtual size: 22KB