fa744e9a0e642eb4057358c7fd035ca9ac1a846afc374e97d153eb0ea7900421

Sharing

Copy URL Twitter E-mail

General

Target

fa744e9a0e642eb4057358c7fd035ca9ac1a846afc374e97d153eb0ea7900421
Size

101KB
MD5

e2bfabaf4f117e04d446745bacc77028
SHA1

7b9162e19a9f1e9f9d04a11d47ccbb26dd69e038
SHA256

fa744e9a0e642eb4057358c7fd035ca9ac1a846afc374e97d153eb0ea7900421
SHA512

16f49d3002e4ab59473eae4fd9b9cbfb6a9b27b7629af0d52cdfe21d6d283075064197ae214bb19f8b208ee86efd3a5691207e5e369ebdbb302d4bd0ae34c49d
SSDEEP

1536:R2g0zKv8y54HBed4CJwvWIPKpL41IU5j/BPicHfObGxDTiBg6r5:ggOW5y58V541ZjBtfkGhTiBg6r5

Score

N/A

Malware Config

Signatures

Files

fa744e9a0e642eb4057358c7fd035ca9ac1a846afc374e97d153eb0ea7900421
.exe windows x86

5a51523f829cf34665f3bfd64eabcf73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorW
MessageBoxW
GetWindowLongW
LoadImageW
DialogBoxParamW
GetDC
LoadStringW
SystemParametersInfoW
GetDlgItemTextA
SendMessageW
SetFocus
SendDlgItemMessageW
InsertMenuItemW
SetWindowLongW
SetWindowTextW
GetDlgItem
GetParent
WinHelpW
SetCursor
PostMessageW
EnableWindow
LoadBitmapW
LoadIconW
wsprintfW
ReleaseDC
EndDialog
SetDlgItemTextW
RegisterClipboardFormatW

msvcrt

wcslen
_initterm
_wcsupr
??3@YAXPAX@Z
_onexit
wcsstr
wcscat
??1type_info@@UAE@XZ
_adjust_fdiv
wcscmp
_except_handler3
malloc
wcstoul
mbstowcs
wcschr
_purecall
free
wcscpy
wcsrchr
memmove
_wcsicmp
?terminate@@YAXXZ
__RTDynamicCast
__dllonexit
??2@YAPAXI@Z
vswprintf

kernel32

CreateFileW
GetSystemWindowsDirectoryW
lstrcmpiW
GlobalFree
GetSystemDefaultLangID
GetModuleHandleA
OutputDebugStringA
IsBadReadPtr
LocalReAlloc
LoadLibraryW
GetDateFormatW
QueryPerformanceCounter
RemoveDirectoryA
SetUnhandledExceptionFilter
FileTimeToLocalFileTime
SetLastError
DeleteCriticalSection
GlobalAlloc
InterlockedDecrement
GetEnvironmentStringsW
lstrlenW
InitializeCriticalSection
GetACP
InterlockedIncrement
GetComputerNameW
lstrcpyW
GlobalLock
WideCharToMultiByte
GetStartupInfoA
OutputDebugStringW
GetCurrentProcess
GlobalUnlock
GetTickCount
GetLastError
LocalFree
FormatMessageW
CloseHandle
FileTimeToSystemTime
GetSystemTimeAsFileTime
GetModuleFileNameW

certcli

CACloseCA
CACertTypeSetSecurity
CAGetCertTypeFlags
CAFreeCertTypeProperty
CAFreeCAProperty
CASetCertTypeExtension
CAGetCertTypePropertyEx
CAGetCertTypeKeySpec
CAEnumNextCertType
CARemoveCACertificateType
CAGetCertTypeExtensions
CACloseCertType
CAGetCAProperty
CAFindByName
CAAddCACertificateType
CAUpdateCA
CAEnumCertTypesForCA
CASetCertTypeKeySpec
CASetCertTypeFlags
CASetCertTypeProperty
CACertTypeGetSecurity
CAFreeCertTypeExtensions
CACreateCertType
CAEnumCertTypes
CAUpdateCertType
CAGetCertTypeProperty
CAFindCertTypeByName

advapi32

RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
RegDeleteValueW
RegEnumKeyExW
RegCloseKey
RegDeleteKeyW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a51523f829cf34665f3bfd64eabcf73

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

certcli

advapi32

comctl32

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 112KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 112KB

.rsrc
Size: 23KB - Virtual size: 22KB