f4635180e292d69de86fb589b41c1d4ef852cd6a4bc50a1e4489a02f89b8e686

Sharing

Copy URL Twitter E-mail

General

Target

f4635180e292d69de86fb589b41c1d4ef852cd6a4bc50a1e4489a02f89b8e686
Size

99KB
MD5

34a3e3328827be795a74895276318955
SHA1

2efb0f91c2f6a70e304a7185d4db3afbe5b946bc
SHA256

f4635180e292d69de86fb589b41c1d4ef852cd6a4bc50a1e4489a02f89b8e686
SHA512

b0f9da7569ae8619e300295a8731018426b141cc301cc8a74dec28866b37eb5220db677060d578d7601665df253d14a2e1736fdeafcae9307ff22f48a8daa5f4
SSDEEP

1536:3hspvtQBM6uPYihGJEWeWdW7qoloKS3MeXYdy/iLPPododB4:368M6saJe1Z/S39iLXododB4

Score

N/A

Malware Config

Signatures

Files

f4635180e292d69de86fb589b41c1d4ef852cd6a4bc50a1e4489a02f89b8e686
.exe windows x86

19a8934ca8c9703b225a3eaa049d3659

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetParent
GetDlgItem
SetDlgItemTextW
SendMessageW
LoadImageW
LoadCursorW
EndDialog
wsprintfW
SetFocus
ReleaseDC
SetWindowTextW
LoadBitmapW
SendDlgItemMessageW
GetWindowLongW
PostMessageW
EnableWindow
MessageBoxW
SetCursor
DialogBoxParamW
SetWindowLongW
InsertMenuItemW
LoadStringW
LoadIconW
WinHelpW
GetDlgItemTextA
RegisterClipboardFormatW
SystemParametersInfoW

kernel32

lstrlenW
GetEnvironmentStringsW
LocalFree
QueryPerformanceCounter
FileTimeToLocalFileTime
OutputDebugStringA
GetLastError
GetComputerNameW
InterlockedDecrement
GlobalAlloc
GetSystemTimeAsFileTime
DeleteCriticalSection
RemoveDirectoryA
OutputDebugStringW
FormatMessageW
GetModuleHandleA
LocalReAlloc
GetStartupInfoA
lstrcpyW
InitializeCriticalSection
GlobalFree
CreateFileW
GetTickCount
GlobalUnlock
SetUnhandledExceptionFilter
GetSystemDefaultLangID
GetDateFormatW
InterlockedIncrement
GetModuleFileNameW
SetLastError
GetCurrentProcess
GetProcAddress
lstrcmpiW
GetSystemWindowsDirectoryW
GlobalLock
GetCPInfo
LoadLibraryW
IsBadReadPtr
FileTimeToSystemTime
WideCharToMultiByte
CloseHandle

msvcrt

_onexit
?terminate@@YAXXZ
free
__RTDynamicCast
??1type_info@@UAE@XZ
wcstoul
mbstowcs
wcslen
wcsstr
wcschr
__dllonexit
_wcsicmp
wcscmp
_initterm
memmove
vswprintf
_wcsupr
malloc
_adjust_fdiv
wcsrchr
wcscpy
??2@YAPAXI@Z
_except_handler3
??3@YAXPAX@Z
wcscat

comctl32

PropertySheetW
CreatePropertySheetPageW

certcli

CACertTypeSetSecurity
CARemoveCACertificateType
CAGetCertTypeExtensions
CAUpdateCA
CAGetCertTypePropertyEx
CAEnumNextCertType
CASetCertTypeProperty
CAFreeCertTypeExtensions
CACertTypeGetSecurity
CASetCertTypeKeySpec
CAAddCACertificateType
CAFreeCAProperty
CAFreeCertTypeProperty
CAEnumCertTypes
CAFindCertTypeByName
CAUpdateCertType
CAGetCertTypeFlags
CAGetCAProperty
CAEnumCertTypesForCA
CACloseCertType
CAFindByName
CASetCertTypeFlags
CACloseCA
CAGetCertTypeKeySpec
CASetCertTypeExtension
CAGetCertTypeProperty
CACreateCertType

advapi32

RegCreateKeyExW
RegEnumKeyExW
RegQueryValueExW
RegSetValueExW
RegOpenKeyExW
RegDeleteKeyW
RegCloseKey
RegDeleteValueW

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

19a8934ca8c9703b225a3eaa049d3659

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

comctl32

certcli

advapi32

Sections

.text Size: 44KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 69KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 44KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 69KB

.rsrc
Size: 24KB - Virtual size: 23KB