fa2d7114cc702e7ff2cfb72344b79a9ae91b103b67907254cbfe89e760bd2e96

Sharing

Copy URL Twitter E-mail

General

Target

fa2d7114cc702e7ff2cfb72344b79a9ae91b103b67907254cbfe89e760bd2e96
Size

101KB
MD5

2a02401e12a1bf22fc1aca190391387f
SHA1

1de140d9784aa36b63cc08ce6ef5faf9fb62d899
SHA256

fa2d7114cc702e7ff2cfb72344b79a9ae91b103b67907254cbfe89e760bd2e96
SHA512

7f30fe88b2eb8ab80be6c2eedeb14b0012db101fe8646b55838e0cac9ed2018a8d8b85d2aeef0fdb44fa5a155cd7652b154c6ae43e0a33137fdffaf8dc6a1ba5
SSDEEP

1536:b/N7SEehDA0Hk6KwntQ3j1J1Firjv/25DutuGoDthiCiLmCC:jN7SEe+2k6zk1J/UjYDutuGoD0KCC

Score

N/A

Malware Config

Signatures

Files

fa2d7114cc702e7ff2cfb72344b79a9ae91b103b67907254cbfe89e760bd2e96
.exe windows x86

009fe55df1b9b684cd16c63b7f1c8347

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
OutputDebugStringA
LocalFree
CreateFileW
GetCurrentProcess
GlobalUnlock
lstrcmpiW
InterlockedDecrement
LocalReAlloc
InterlockedIncrement
SetLastError
LoadLibraryW
FileTimeToSystemTime
GetTickCount
GetProcAddress
GetModuleFileNameW
lstrcpyW
OutputDebugStringW
GlobalAlloc
GetCPInfo
GetDateFormatW
GlobalLock
IsBadReadPtr
GetLastError
GetSystemWindowsDirectoryW
GlobalFree
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetEnvironmentStringsW
GetModuleHandleA
GetSystemDefaultLangID
GetStartupInfoA
SetUnhandledExceptionFilter
FileTimeToLocalFileTime
DeleteCriticalSection
GetComputerNameW
lstrlenW
WideCharToMultiByte
FormatMessageW
CloseHandle
InitializeCriticalSection

advapi32

RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegDeleteKeyW

certcli

CACloseCA
CAFreeCertTypeExtensions
CACertTypeGetSecurity
CAGetCertTypeExtensions
CAFindCertTypeByName
CAFindByName
CAEnumNextCertType
CACloseCertType
CACertTypeSetSecurity
CASetCertTypeKeySpec
CASetCertTypeFlags
CAUpdateCertType
CAUpdateCA
CAGetCertTypeKeySpec
CAGetCertTypeProperty
CAFreeCertTypeProperty
CAEnumCertTypes
CAGetCAProperty
CARemoveCACertificateType
CAEnumCertTypesForCA
CAGetCertTypePropertyEx
CACreateCertType
CAAddCACertificateType
CASetCertTypeProperty
CASetCertTypeExtension
CAFreeCAProperty
CAGetCertTypeFlags

msvcrt

mbstowcs
vswprintf
?terminate@@YAXXZ
??2@YAPAXI@Z
memmove
malloc
__RTDynamicCast
wcstoul
wcschr
??1type_info@@UAE@XZ
_adjust_fdiv
wcsrchr
wcscat
_onexit
free
??3@YAXPAX@Z
wcsstr
__dllonexit
_initterm
wcslen
wcscpy
wcscmp
_except_handler3
_wcsicmp
_wcsupr

user32

LoadBitmapW
PostMessageW
SendDlgItemMessageW
DialogBoxParamW
wsprintfW
RegisterClipboardFormatW
EnableWindow
SystemParametersInfoW
WinHelpW
LoadCursorW
MessageBoxW
LoadStringW
LoadImageW
GetDlgItem
SetWindowLongW
EndDialog
GetParent
SetWindowTextW
InsertMenuItemW
GetWindowLongW
GetDlgItemTextA
ReleaseDC
SetCursor
SetDlgItemTextW
SendMessageW
LoadIconW
GetDC
SetFocus

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

009fe55df1b9b684cd16c63b7f1c8347

Headers

File Characteristics

Imports

kernel32

advapi32

certcli

msvcrt

user32

comctl32

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 102KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 102KB

.rsrc
Size: 24KB - Virtual size: 24KB