443885f05d9f3ff8ed7956a50df07614cbcc7a0508a47198e2bc82d5449534ce

Sharing

Copy URL Twitter E-mail

General

Target

443885f05d9f3ff8ed7956a50df07614cbcc7a0508a47198e2bc82d5449534ce
Size

102KB
MD5

2c7aafe474c18505f95e3c1e367aa1dd
SHA1

996ade44b4d158893052cf0326b377e30f1b6ee3
SHA256

443885f05d9f3ff8ed7956a50df07614cbcc7a0508a47198e2bc82d5449534ce
SHA512

9a71a3db1d532fb4cccaf3346ab6a8e75d907caafdd5dbc52b09c022f9250827543103f99c7dc44f13474ce38ae6ab560daeb747b88f5654441762a6e2adf75b
SSDEEP

1536:9NbOuTCxmIDXagkZQynXax8NMiRvlvhoOFh37QFBJTH6:zK1fyDNMiR9vhoU37sBJ2

Score

N/A

Malware Config

Signatures

Files

443885f05d9f3ff8ed7956a50df07614cbcc7a0508a47198e2bc82d5449534ce
.exe windows x86

ec67a6695bd226c284f34ddfe38b7634

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcschr
wcsstr
_purecall
_adjust_fdiv
__dllonexit
wcstoul
free
wcsrchr
wcscat
mbstowcs
_onexit
_initterm
??1type_info@@UAE@XZ
??2@YAPAXI@Z
malloc
wcslen
??3@YAXPAX@Z
wcscpy
?terminate@@YAXXZ
_except_handler3
wcscmp
vswprintf
_wcsupr
__RTDynamicCast
memmove
_wcsicmp

kernel32

RemoveDirectoryA
lstrlenW
GlobalFree
InitializeCriticalSection
OutputDebugStringW
GetEnvironmentStringsW
GetLastError
GetSystemTimeAsFileTime
GetModuleFileNameW
DeleteCriticalSection
GetCurrentProcess
InterlockedDecrement
GetACP
GetSystemDefaultLangID
FormatMessageW
LoadLibraryW
GlobalUnlock
LocalFree
LocalReAlloc
GetSystemWindowsDirectoryW
WideCharToMultiByte
OutputDebugStringA
GetTickCount
GetDateFormatW
CloseHandle
GetStartupInfoA
CreateFileW
SetLastError
GetModuleHandleA
FileTimeToLocalFileTime
lstrcpyW
InterlockedIncrement
SetUnhandledExceptionFilter
GetComputerNameW
lstrcmpiW
GlobalLock
IsBadReadPtr
GlobalAlloc
FileTimeToSystemTime
QueryPerformanceCounter

advapi32

RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
RegEnumKeyExW
RegCloseKey
RegDeleteValueW
RegQueryValueExW

certcli

CAEnumCertTypesForCA
CACertTypeGetSecurity
CAFreeCertTypeProperty
CASetCertTypeProperty
CAGetCertTypeKeySpec
CAGetCAProperty
CAFreeCAProperty
CASetCertTypeKeySpec
CACloseCA
CASetCertTypeExtension
CAGetCertTypeExtensions
CAUpdateCertType
CARemoveCACertificateType
CACreateCertType
CAFindCertTypeByName
CAFreeCertTypeExtensions
CAUpdateCA
CAAddCACertificateType
CAGetCertTypePropertyEx
CAFindByName
CACertTypeSetSecurity
CAEnumNextCertType
CAGetCertTypeFlags
CAEnumCertTypes
CAGetCertTypeProperty
CACloseCertType
CASetCertTypeFlags

comctl32

CreatePropertySheetPageW
PropertySheetW

user32

SetWindowLongW
MessageBoxW
SystemParametersInfoW
GetParent
SetCursor
LoadCursorW
WinHelpW
wsprintfW
SetDlgItemTextW
DialogBoxParamW
GetDC
SendMessageW
RegisterClipboardFormatW
PostMessageW
LoadStringW
InsertMenuItemW
LoadIconW
GetDlgItemTextA
SetWindowTextW
EndDialog
LoadImageW
EnableWindow
SetFocus
GetWindowLongW
GetDlgItem
ReleaseDC
LoadBitmapW
SendDlgItemMessageW

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ec67a6695bd226c284f34ddfe38b7634

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

certcli

comctl32

user32

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 74KB

.rsrc Size: 25KB - Virtual size: 24KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 74KB

.rsrc
Size: 25KB - Virtual size: 24KB