2b7e1bf20032a09a1b24a36002f8a96797b4e827c25edc0ca0e5344fe428110f

Sharing

Copy URL Twitter E-mail

General

Target

2b7e1bf20032a09a1b24a36002f8a96797b4e827c25edc0ca0e5344fe428110f
Size

102KB
MD5

6e4404553e65aa54eedd94c867d5d5f7
SHA1

a9f65a28555734c830081fcc1347097f5111f386
SHA256

2b7e1bf20032a09a1b24a36002f8a96797b4e827c25edc0ca0e5344fe428110f
SHA512

854d337ecb2078f874646dc9c020937178824ecb65357d7e7a6a50dbb21e1474b5452a34d9b163da5972a96d009d15f2ae8ae1c0452a55de038053e5dc3cf8e6
SSDEEP

1536:yzMx/vCa6SUTktMnnYfYjCNfGBmNXzmqFUU5m31039Ydz5yfqvHa:4Mx/qabBtEnxOImBzzCp3c9YTyA6

Score

N/A

Malware Config

Signatures

Files

2b7e1bf20032a09a1b24a36002f8a96797b4e827c25edc0ca0e5344fe428110f
.exe windows x86

c70f97a95cb9ed58567b78db83252805

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

PropertySheetW
CreatePropertySheetPageW

certcli

CACertTypeGetSecurity
CAGetCertTypeFlags
CASetCertTypeExtension
CAGetCAProperty
CACertTypeSetSecurity
CASetCertTypeFlags
CAEnumCertTypesForCA
CAFindCertTypeByName
CASetCertTypeKeySpec
CAGetCertTypeKeySpec
CACloseCertType
CAAddCACertificateType
CAGetCertTypeExtensions
CAFindByName
CAUpdateCertType
CASetCertTypeProperty
CAEnumNextCertType
CARemoveCACertificateType
CAGetCertTypePropertyEx
CACreateCertType
CAEnumCertTypes
CACloseCA
CAUpdateCA
CAFreeCertTypeExtensions
CAFreeCertTypeProperty
CAFreeCAProperty
CAGetCertTypeProperty

user32

LoadImageW
EnableWindow
WinHelpW
GetDC
SetFocus
GetWindowLongW
LoadCursorW
LoadIconW
RegisterClipboardFormatW
SendMessageW
SystemParametersInfoW
MessageBoxW
GetDlgItemTextA
LoadBitmapW
DialogBoxParamW
PostMessageW
LoadStringW
SetWindowTextW
wsprintfW
SetWindowLongW
GetDlgItem
SetCursor
EndDialog
SetDlgItemTextW
GetParent
SendDlgItemMessageW
ReleaseDC
InsertMenuItemW

kernel32

GetSystemTimeAsFileTime
GetComputerNameW
GlobalUnlock
LocalReAlloc
FileTimeToLocalFileTime
LocalFree
lstrlenW
FormatMessageW
lstrcpyW
GetModuleFileNameW
WideCharToMultiByte
SetLastError
LoadLibraryW
GlobalFree
CloseHandle
GetCPInfo
GetSystemDefaultLangID
GetDateFormatW
GetEnvironmentStringsW
QueryPerformanceCounter
IsBadReadPtr
InitializeCriticalSection
GetSystemWindowsDirectoryW
GetProcAddress
OutputDebugStringW
OutputDebugStringA
SetUnhandledExceptionFilter
DeleteCriticalSection
GlobalAlloc
FileTimeToSystemTime
InterlockedIncrement
InterlockedDecrement
GetCurrentThread
lstrcmpiW
GetLastError
GlobalLock
CreateFileW
GetTickCount
GetStartupInfoA
GetCurrentProcess
GetModuleHandleA

msvcrt

free
_initterm
_adjust_fdiv
?terminate@@YAXXZ
wcscmp
__RTDynamicCast
??2@YAPAXI@Z
__dllonexit
??3@YAXPAX@Z
_except_handler3
memmove
wcschr
wcscat
mbstowcs
wcslen
_wcsicmp
wcsstr
vswprintf
malloc
wcscpy
_wcsupr
wcsrchr
wcstoul
??1type_info@@UAE@XZ
_onexit

advapi32

RegCloseKey
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegEnumKeyExW

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c70f97a95cb9ed58567b78db83252805

Headers

File Characteristics

Imports

comctl32

certcli

user32

kernel32

msvcrt

advapi32

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 104KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 104KB

.rsrc
Size: 23KB - Virtual size: 22KB