73fef00eea8d51c31002add1067809ba6b88ae9886160f95a00bb35f071a92d5

Sharing

Copy URL Twitter E-mail

General

Target

73fef00eea8d51c31002add1067809ba6b88ae9886160f95a00bb35f071a92d5
Size

101KB
MD5

69f373d182f7225642c56496eb296e2b
SHA1

8dc99f4b30b5c0b204c7d2672aff917c5d2da79d
SHA256

73fef00eea8d51c31002add1067809ba6b88ae9886160f95a00bb35f071a92d5
SHA512

61f7c0cd2ae08e39b59ed86063c245a72fd2b3e707d2fb4dc7f590ea00a623235861bf7e5bfac70ac841e30bc994946cdcc66fa862fee191fef344d2a8197b8f
SSDEEP

3072:sOg75mlP3nHv65bM8n1kaELlcOdY2N0beoK5C:sOgdM3Hb8GaUqOC2N0beRC

Score

N/A

Malware Config

Signatures

Files

73fef00eea8d51c31002add1067809ba6b88ae9886160f95a00bb35f071a92d5
.exe windows x86

275a1345b5fe3f0f58c193b7d4a75664

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
GetLastError
GetModuleFileNameW
GetComputerNameW
GetSystemWindowsDirectoryW
InterlockedIncrement
lstrlenW
InterlockedDecrement
GlobalFree
GetTickCount
SetUnhandledExceptionFilter
OutputDebugStringW
GetCPInfo
SetLastError
GetCurrentProcess
WideCharToMultiByte
CloseHandle
GetEnvironmentStringsW
FormatMessageW
LocalReAlloc
FileTimeToLocalFileTime
LoadLibraryW
GetSystemTimeAsFileTime
GlobalLock
OutputDebugStringA
GetDateFormatW
QueryPerformanceCounter
GlobalUnlock
GetModuleHandleA
InitializeCriticalSection
lstrcmpiW
GlobalAlloc
GetSystemDefaultLangID
GetStartupInfoA
FileTimeToSystemTime
GetProcAddress
LocalFree
CreateFileW
GetCurrentThread
lstrcpyW
IsBadReadPtr

msvcrt

wcschr
_except_handler3
??2@YAPAXI@Z
_onexit
wcstoul
?terminate@@YAXXZ
free
_initterm
??1type_info@@UAE@XZ
malloc
wcscpy
_wcsicmp
_adjust_fdiv
__dllonexit
mbstowcs
wcscmp
wcsstr
wcscat
wcsrchr
??3@YAXPAX@Z
_wcsupr
memmove
vswprintf
wcslen
__RTDynamicCast

user32

GetDlgItem
EnableWindow
RegisterClipboardFormatW
SetCursor
SystemParametersInfoW
SetWindowTextW
MessageBoxW
LoadStringW
SetDlgItemTextW
LoadCursorW
InsertMenuItemW
LoadIconW
PostMessageW
DialogBoxParamW
ReleaseDC
EndDialog
SendDlgItemMessageW
GetParent
wsprintfW
LoadBitmapW
GetDlgItemTextA
GetDC
LoadImageW
SetWindowLongW
SetFocus
WinHelpW
SendMessageW
GetWindowLongW

certcli

CAEnumNextCertType
CACreateCertType
CACloseCertType
CAFreeCAProperty
CAGetCAProperty
CAUpdateCA
CACertTypeSetSecurity
CASetCertTypeFlags
CAGetCertTypeProperty
CASetCertTypeExtension
CAGetCertTypeFlags
CAUpdateCertType
CAEnumCertTypesForCA
CAFreeCertTypeExtensions
CASetCertTypeKeySpec
CACloseCA
CAEnumCertTypes
CACertTypeGetSecurity
CAFindCertTypeByName
CAGetCertTypeKeySpec
CAFreeCertTypeProperty
CARemoveCACertificateType
CAGetCertTypePropertyEx
CAFindByName
CAGetCertTypeExtensions
CASetCertTypeProperty
CAAddCACertificateType

advapi32

RegCloseKey
RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegQueryValueExW
RegSetValueExW
RegDeleteValueW
RegCreateKeyExW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

275a1345b5fe3f0f58c193b7d4a75664

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

certcli

advapi32

comctl32

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 89KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 89KB

.rsrc
Size: 24KB - Virtual size: 23KB