56a2ab169e4914d0501fc30fdeea4c1d6b6b37b759796d2f9cc9e778f4916d0e

Sharing

Copy URL

Twitter E-mail

General

Target

56a2ab169e4914d0501fc30fdeea4c1d6b6b37b759796d2f9cc9e778f4916d0e
Size

102KB
MD5

160926a2c66f63c0d53bbd61a91a9a9e
SHA1

cf9b7f21efb12bd7207c3986d530628020bad7dc
SHA256

56a2ab169e4914d0501fc30fdeea4c1d6b6b37b759796d2f9cc9e778f4916d0e
SHA512

af29d20142cf45e2f550f5415bdd78f8cd2889b885b1c25026253240fab44eff87a9ea31d076c8f55e772eabbfd938c029e5d0c93fe4517179a80bd8f9f29c98
SSDEEP

3072:4h13GPBlKElx7peWSbiUQ+BWRClb89UzEqFOX:4h1Wz77pVSmf+4oB8ezqX

Score

N/A

Malware Config

Signatures

Files

56a2ab169e4914d0501fc30fdeea4c1d6b6b37b759796d2f9cc9e778f4916d0e
.exe windows x86

b43f53fc3288536ee12a4c2e33d13686

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAEnumCertTypesForCA
CAUpdateCA
CACloseCertType
CAFindCertTypeByName
CAGetCertTypeExtensions
CACertTypeGetSecurity
CAFreeCertTypeExtensions
CARemoveCACertificateType
CASetCertTypeKeySpec
CAGetCertTypeProperty
CAGetCertTypePropertyEx
CAGetCAProperty
CAFreeCertTypeProperty
CASetCertTypeExtension
CASetCertTypeFlags
CAGetCertTypeFlags
CACertTypeSetSecurity
CASetCertTypeProperty
CACloseCA
CACreateCertType
CAFindByName
CAEnumCertTypes
CAEnumNextCertType
CAFreeCAProperty
CAGetCertTypeKeySpec
CAUpdateCertType
CAAddCACertificateType

user32

GetDlgItem
GetWindowLongW
LoadIconW
wsprintfW
InsertMenuItemW
SetDlgItemTextW
SetFocus
MessageBoxW
WinHelpW
SendDlgItemMessageW
SetWindowTextW
PostMessageW
LoadBitmapW
GetDC
EnableWindow
RegisterClipboardFormatW
GetParent
SystemParametersInfoW
LoadImageW
ReleaseDC
LoadCursorW
SendMessageW
GetDlgItemTextA
LoadStringW
SetWindowLongW
DialogBoxParamW
EndDialog
SetCursor

advapi32

RegCreateKeyExW
RegEnumKeyExW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegQueryValueExW
RegDeleteValueW
RegDeleteKeyW

kernel32

QueryPerformanceCounter
GlobalUnlock
GlobalFree
GlobalAlloc
LocalFree
InitializeCriticalSection
RemoveDirectoryA
GetModuleHandleA
GetEnvironmentStringsW
SetLastError
FileTimeToSystemTime
IsBadReadPtr
GetSystemWindowsDirectoryW
InterlockedIncrement
GetStartupInfoA
FormatMessageW
GetSystemDefaultLangID
lstrcpyW
GetComputerNameW
SetUnhandledExceptionFilter
GetACP
CloseHandle
LocalReAlloc
lstrcmpiW
CreateFileW
GetLastError
GetDateFormatW
LoadLibraryW
OutputDebugStringW
GetCurrentProcess
lstrlenW
GetTickCount
OutputDebugStringA
WideCharToMultiByte
GetModuleFileNameW
FileTimeToLocalFileTime
GlobalLock
GetSystemTimeAsFileTime
InterlockedDecrement
DeleteCriticalSection

msvcrt

memmove
wcscat
wcscpy
wcscmp
_except_handler3
free
mbstowcs
??3@YAXPAX@Z
vswprintf
wcsstr
??2@YAPAXI@Z
wcschr
_onexit
?terminate@@YAXXZ
_wcsicmp
wcsrchr
_purecall
??1type_info@@UAE@XZ
wcslen
__RTDynamicCast
__dllonexit
wcstoul
_wcsupr
_adjust_fdiv
malloc
_initterm

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b43f53fc3288536ee12a4c2e33d13686

Headers

File Characteristics

Imports

certcli

user32

advapi32

kernel32

msvcrt

comctl32

Sections

.text Size: 49KB - Virtual size: 48KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 117KB

.rsrc Size: 22KB - Virtual size: 22KB

.text
Size: 49KB - Virtual size: 48KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 117KB

.rsrc
Size: 22KB - Virtual size: 22KB