369b25a18adfbe05c604c7c8c8ba6af7e7dc60f2995c2ac010e20df2c46ab9cc

Sharing

Copy URL Twitter E-mail

General

Target

369b25a18adfbe05c604c7c8c8ba6af7e7dc60f2995c2ac010e20df2c46ab9cc
Size

101KB
MD5

5ba1f05a668958f676647a75496217d9
SHA1

d835af928b2ce5a0c256ec734d2cc8b6406f4d5d
SHA256

369b25a18adfbe05c604c7c8c8ba6af7e7dc60f2995c2ac010e20df2c46ab9cc
SHA512

0c13eb7d6236dae09e834f16544dc5d3414b3801c03012960e3051de9e300322fcefe4471782e1d30afb8f13090be90788507dfcd055681c7dd474304f486205
SSDEEP

3072:G4P2z64de820DUQH5h/P45/9Mx9+9TqPF4:GY06A2vQ7Pi/6+9Z

Score

N/A

Malware Config

Signatures

Files

369b25a18adfbe05c604c7c8c8ba6af7e7dc60f2995c2ac010e20df2c46ab9cc
.exe windows x86

89dda4ab399a2e5ab393c75cd49c3910

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcscat
__RTDynamicCast
_wcsicmp
vswprintf
_onexit
wcscmp
??3@YAXPAX@Z
?terminate@@YAXXZ
mbstowcs
??1type_info@@UAE@XZ
_except_handler3
wcschr
wcslen
__dllonexit
_wcsupr
wcscpy
wcstoul
memmove
malloc
??2@YAPAXI@Z
free
wcsrchr
wcsstr
_initterm
_adjust_fdiv

kernel32

GetSystemTimeAsFileTime
FileTimeToSystemTime
lstrlenW
lstrcmpiW
LocalFree
GetTickCount
OutputDebugStringA
GetStartupInfoA
QueryPerformanceCounter
CreateFileW
GetCPInfo
FileTimeToLocalFileTime
GetModuleHandleA
GetLastError
GetSystemWindowsDirectoryW
FormatMessageW
SetUnhandledExceptionFilter
SetLastError
InterlockedDecrement
GetEnvironmentStringsW
DeleteCriticalSection
GetSystemDefaultLangID
LoadLibraryW
RemoveDirectoryA
GlobalAlloc
GlobalUnlock
WideCharToMultiByte
GetCurrentProcess
LocalReAlloc
CloseHandle
GetProcAddress
GlobalFree
IsBadReadPtr
lstrcpyW
InterlockedIncrement
GetModuleFileNameW
GetComputerNameW
GlobalLock
OutputDebugStringW
InitializeCriticalSection
GetDateFormatW

user32

ReleaseDC
SendDlgItemMessageW
SetFocus
GetDlgItemTextA
LoadBitmapW
GetParent
LoadCursorW
RegisterClipboardFormatW
GetWindowLongW
LoadImageW
SystemParametersInfoW
GetDC
LoadStringW
SetCursor
SendMessageW
PostMessageW
SetDlgItemTextW
GetDlgItem
SetWindowTextW
SetWindowLongW
MessageBoxW
LoadIconW
wsprintfW
EnableWindow
DialogBoxParamW
WinHelpW
EndDialog
InsertMenuItemW

certcli

CASetCertTypeExtension
CAFreeCertTypeProperty
CASetCertTypeFlags
CAEnumNextCertType
CACertTypeGetSecurity
CAFreeCAProperty
CACloseCertType
CASetCertTypeProperty
CACloseCA
CACreateCertType
CAGetCertTypeFlags
CAFindByName
CAGetCertTypePropertyEx
CAUpdateCertType
CAFreeCertTypeExtensions
CASetCertTypeKeySpec
CAGetCAProperty
CAUpdateCA
CACertTypeSetSecurity
CARemoveCACertificateType
CAGetCertTypeKeySpec
CAGetCertTypeProperty
CAGetCertTypeExtensions
CAAddCACertificateType
CAEnumCertTypesForCA
CAEnumCertTypes
CAFindCertTypeByName

comctl32

CreatePropertySheetPageW
PropertySheetW

advapi32

RegCreateKeyExW
RegDeleteValueW
RegSetValueExW
RegOpenKeyExW
RegDeleteKeyW
RegQueryValueExW
RegCloseKey
RegEnumKeyExW

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

89dda4ab399a2e5ab393c75cd49c3910

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

certcli

comctl32

advapi32

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 102KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 102KB

.rsrc
Size: 23KB - Virtual size: 22KB