57753f970e931691ea84bbd6856033306735eb96c2e403e32bd0753de89a135e

Sharing

Copy URL Twitter E-mail

General

Target

57753f970e931691ea84bbd6856033306735eb96c2e403e32bd0753de89a135e
Size

99KB
MD5

26f4af8785c7f3c6df6135d03845fa3b
SHA1

114506a952168e33949a90e11b16278388e1fcc2
SHA256

57753f970e931691ea84bbd6856033306735eb96c2e403e32bd0753de89a135e
SHA512

f93f8e900234a05ce01c9c54f45f07283bc90da5c47c2c9e8f2bbea78963e4cf7769748ed637dc7fa0b958908e1da9d0bd4187d2e2f30fd35941e5d2c7a3fa53
SSDEEP

1536:4qe6px9yABTuAgi8Qt8s9eHnpq/NvMLVIM/mj3BADNgWGPvMBlNwQE:4qe6pxkABq7PWgHnpnVIou6DBG8BDa

Score

N/A

Malware Config

Signatures

Files

57753f970e931691ea84bbd6856033306735eb96c2e403e32bd0753de89a135e
.exe windows x86

2ad03ac2a58d25365cbd87518360df6a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CACloseCA
CAGetCertTypeFlags
CACloseCertType
CASetCertTypeKeySpec
CACreateCertType
CAGetCertTypeKeySpec
CAGetCertTypePropertyEx
CAGetCertTypeExtensions
CAUpdateCA
CAFreeCAProperty
CAGetCertTypeProperty
CACertTypeSetSecurity
CAFindByName
CAGetCAProperty
CAFreeCertTypeExtensions
CAAddCACertificateType
CARemoveCACertificateType
CAEnumCertTypesForCA
CASetCertTypeExtension
CACertTypeGetSecurity
CASetCertTypeFlags
CAFreeCertTypeProperty
CASetCertTypeProperty
CAFindCertTypeByName
CAEnumNextCertType
CAEnumCertTypes
CAUpdateCertType

msvcrt

_wcsupr
_except_handler3
wcslen
_onexit
wcschr
??3@YAXPAX@Z
free
??2@YAPAXI@Z
wcscmp
_initterm
_wcsicmp
wcsrchr
vswprintf
wcsstr
_purecall
__dllonexit
?terminate@@YAXXZ
mbstowcs
wcscpy
memmove
wcstoul
_adjust_fdiv
malloc
??1type_info@@UAE@XZ
wcscat
__RTDynamicCast

user32

PostMessageW
EnableWindow
GetDlgItem
SystemParametersInfoW
RegisterClipboardFormatW
SetCursor
GetParent
SetWindowLongW
SetWindowTextW
WinHelpW
GetWindowLongW
MessageBoxW
ReleaseDC
InsertMenuItemW
LoadStringW
wsprintfW
LoadIconW
SetDlgItemTextW
SendMessageW
DialogBoxParamW
LoadImageW
LoadBitmapW
LoadCursorW
GetDC
GetDlgItemTextA
SetFocus
SendDlgItemMessageW
EndDialog

kernel32

WideCharToMultiByte
GetCurrentProcess
GetModuleHandleA
GetComputerNameW
LocalFree
OutputDebugStringA
CreateFileW
FileTimeToLocalFileTime
FormatMessageW
GetLastError
SetLastError
GetSystemWindowsDirectoryW
lstrcmpiW
FileTimeToSystemTime
LocalReAlloc
InitializeCriticalSection
GlobalAlloc
GlobalUnlock
RemoveDirectoryA
GetModuleFileNameW
InterlockedIncrement
GetACP
lstrcpyW
DeleteCriticalSection
InterlockedDecrement
CloseHandle
IsBadReadPtr
GlobalFree
GetTickCount
SetUnhandledExceptionFilter
OutputDebugStringW
GlobalLock
GetSystemTimeAsFileTime
GetStartupInfoA
LoadLibraryW
GetSystemDefaultLangID
GetEnvironmentStringsW
QueryPerformanceCounter
GetDateFormatW
lstrlenW

comctl32

PropertySheetW
CreatePropertySheetPageW

advapi32

RegEnumKeyExW
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW
RegDeleteKeyW

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ad03ac2a58d25365cbd87518360df6a

Headers

File Characteristics

Imports

certcli

msvcrt

user32

kernel32

comctl32

advapi32

Sections

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 122KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 122KB

.rsrc
Size: 23KB - Virtual size: 23KB