32a1f39e1927f314ed23397602f618d1939abafa27825d9f826f80558f70d238

Sharing

Copy URL Twitter E-mail

General

Target

32a1f39e1927f314ed23397602f618d1939abafa27825d9f826f80558f70d238
Size

102KB
MD5

2759438aab74bce8fd3cf46100ba327e
SHA1

efed8adb431d49f1ddfabda27acc89e24df8ae0c
SHA256

32a1f39e1927f314ed23397602f618d1939abafa27825d9f826f80558f70d238
SHA512

98cf8f126ffcee379f3903312a43350eff8b755da1a76f5a84e5e0a5c056ecd330fcf720870a0209aad5c7d828f2440ddcbd2aee0f6089ae8584e16166dc43cb
SSDEEP

1536:aI+bWjDoANJKWDo9MM49k0XxTTz71SP30gtEzFs8kZbJfvgiPf:7CbAvzDM4S41Ty5tvZtfIiP

Score

N/A

Malware Config

Signatures

Files

32a1f39e1927f314ed23397602f618d1939abafa27825d9f826f80558f70d238
.exe windows x86

25a22b30f6ff8e5ea110fe463d15ae97

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

PropertySheetW
CreatePropertySheetPageW

kernel32

GetLastError
lstrcmpiW
InterlockedDecrement
GetStartupInfoA
RemoveDirectoryA
GetACP
FormatMessageW
OutputDebugStringA
GetSystemDefaultLangID
IsBadReadPtr
GlobalAlloc
GetModuleFileNameW
SetUnhandledExceptionFilter
GlobalLock
GetSystemWindowsDirectoryW
CreateFileW
SetLastError
GlobalUnlock
GetModuleHandleA
InterlockedIncrement
GetSystemTimeAsFileTime
GetTickCount
lstrcpyW
OutputDebugStringW
GlobalFree
LocalFree
DeleteCriticalSection
GetCurrentProcess
FileTimeToLocalFileTime
QueryPerformanceCounter
GetDateFormatW
LocalReAlloc
GetEnvironmentStringsW
LoadLibraryW
WideCharToMultiByte
CloseHandle
lstrlenW
InitializeCriticalSection
FileTimeToSystemTime
GetComputerNameW

user32

SendDlgItemMessageW
LoadIconW
SetFocus
SendMessageW
GetDC
SystemParametersInfoW
InsertMenuItemW
SetWindowTextW
GetParent
LoadBitmapW
wsprintfW
RegisterClipboardFormatW
ReleaseDC
LoadStringW
SetCursor
MessageBoxW
DialogBoxParamW
GetWindowLongW
SetDlgItemTextW
EnableWindow
SetWindowLongW
EndDialog
GetDlgItem
WinHelpW
LoadImageW
LoadCursorW
PostMessageW
GetDlgItemTextA

certcli

CACertTypeSetSecurity
CACloseCertType
CAGetCertTypeProperty
CASetCertTypeProperty
CAFreeCertTypeProperty
CACreateCertType
CAGetCAProperty
CACloseCA
CAFindByName
CAGetCertTypeKeySpec
CACertTypeGetSecurity
CASetCertTypeKeySpec
CAGetCertTypeExtensions
CAGetCertTypeFlags
CASetCertTypeExtension
CAEnumCertTypesForCA
CAAddCACertificateType
CASetCertTypeFlags
CAGetCertTypePropertyEx
CAFreeCAProperty
CAFreeCertTypeExtensions
CAFindCertTypeByName
CAEnumCertTypes
CAUpdateCA
CARemoveCACertificateType
CAUpdateCertType
CAEnumNextCertType

msvcrt

wcstoul
vswprintf
wcscpy
mbstowcs
__dllonexit
??3@YAXPAX@Z
wcsstr
wcslen
wcscat
free
?terminate@@YAXXZ
wcschr
_purecall
__RTDynamicCast
??2@YAPAXI@Z
_except_handler3
_initterm
wcscmp
_wcsicmp
_adjust_fdiv
wcsrchr
memmove
_wcsupr
??1type_info@@UAE@XZ
malloc
_onexit

advapi32

RegQueryValueExW
RegCloseKey
RegSetValueExW
RegDeleteValueW
RegEnumKeyExW
RegDeleteKeyW
RegOpenKeyExW
RegCreateKeyExW

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25a22b30f6ff8e5ea110fe463d15ae97

Headers

File Characteristics

Imports

comctl32

kernel32

user32

certcli

msvcrt

advapi32

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 85KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 85KB

.rsrc
Size: 24KB - Virtual size: 23KB