62d8109d0a07061cea5c7dadae39b6bef217cbfab1597674e7c0862947638c72

Sharing

Copy URL Twitter E-mail

General

Target

62d8109d0a07061cea5c7dadae39b6bef217cbfab1597674e7c0862947638c72
Size

101KB
MD5

550bdcf6d869b81e0eabe13b5da83911
SHA1

342e98175e20f33508a7f1e938c573457a75bd09
SHA256

62d8109d0a07061cea5c7dadae39b6bef217cbfab1597674e7c0862947638c72
SHA512

c310b64fd7325456e447188267734e5bc87ee0b99e7677f54e490a3b59c85c87dd41f4a6454a033b53f03056a06c88fca9178c05c9a2f184dcf9158a3fd21c0b
SSDEEP

1536:ffK7+eqdNdjcIu1h/PW1gSTAsDGkENHa2hPwCFv8pfuZdOEU:ffK7+eSvjc11pG00GkEI26CSpfCd

Score

N/A

Malware Config

Signatures

Files

62d8109d0a07061cea5c7dadae39b6bef217cbfab1597674e7c0862947638c72
.exe windows x86

e4a112483edac7e4a6e649fc7e1b4bdb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
__RTDynamicCast
mbstowcs
wcstoul
_wcsicmp
??1type_info@@UAE@XZ
wcscmp
??2@YAPAXI@Z
wcslen
malloc
wcscat
vswprintf
__dllonexit
?terminate@@YAXXZ
_except_handler3
??3@YAXPAX@Z
_onexit
wcsrchr
_initterm
wcsstr
free
wcscpy
wcschr
_wcsupr
memmove

certcli

CACertTypeGetSecurity
CAFreeCertTypeProperty
CAEnumNextCertType
CAGetCertTypeKeySpec
CAEnumCertTypes
CACreateCertType
CAEnumCertTypesForCA
CASetCertTypeProperty
CAFindCertTypeByName
CAUpdateCertType
CAFindByName
CAGetCertTypePropertyEx
CACloseCertType
CAFreeCAProperty
CAGetCertTypeProperty
CAAddCACertificateType
CAUpdateCA
CASetCertTypeKeySpec
CAGetCertTypeExtensions
CASetCertTypeExtension
CARemoveCACertificateType
CAGetCAProperty
CAGetCertTypeFlags
CACertTypeSetSecurity
CAFreeCertTypeExtensions
CACloseCA
CASetCertTypeFlags

kernel32

GetModuleFileNameW
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetCurrentProcess
GetComputerNameW
GetSystemTimeAsFileTime
IsBadReadPtr
GetProcAddress
LoadLibraryW
WideCharToMultiByte
InitializeCriticalSection
GetTickCount
lstrcpyW
OutputDebugStringW
GetSystemWindowsDirectoryW
LocalFree
SetLastError
lstrcmpiW
GetSystemDefaultLangID
GlobalUnlock
GlobalAlloc
CreateFileW
GetStartupInfoA
GetModuleHandleA
GetCPInfo
DeleteCriticalSection
lstrlenW
FormatMessageW
GetDateFormatW
GetLastError
InterlockedDecrement
QueryPerformanceCounter
InterlockedIncrement
GetCurrentThread
GlobalFree
GlobalLock
FileTimeToSystemTime
FileTimeToLocalFileTime
LocalReAlloc
CloseHandle
OutputDebugStringA

user32

EnableWindow
SendDlgItemMessageW
PostMessageW
LoadStringW
ReleaseDC
SetWindowTextW
GetParent
LoadImageW
SendMessageW
LoadIconW
DialogBoxParamW
GetDC
wsprintfW
SetWindowLongW
SetCursor
InsertMenuItemW
LoadBitmapW
GetWindowLongW
SetFocus
WinHelpW
EndDialog
MessageBoxW
GetDlgItem
RegisterClipboardFormatW
SystemParametersInfoW
LoadCursorW
GetDlgItemTextA
SetDlgItemTextW

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExW
RegDeleteKeyW
RegCreateKeyExW
RegEnumKeyExW
RegSetValueExW
RegDeleteValueW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4a112483edac7e4a6e649fc7e1b4bdb

Headers

File Characteristics

Imports

msvcrt

certcli

kernel32

user32

advapi32

comctl32

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 103KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 103KB

.rsrc
Size: 23KB - Virtual size: 23KB