33985f8586557182e66d79dab33542c6e3cfeb91372867afaa08c4aba3d77498

Sharing

Copy URL Twitter E-mail

General

Target

33985f8586557182e66d79dab33542c6e3cfeb91372867afaa08c4aba3d77498
Size

101KB
MD5

5eb017a6a4d7afdc5559d32621b0cfc1
SHA1

29f494fbadd8ad9ffa4b366d534e68bde0ec5891
SHA256

33985f8586557182e66d79dab33542c6e3cfeb91372867afaa08c4aba3d77498
SHA512

451180f0fd05936655df7176c702ad01c68e4ad70c69cb8178f261ad65a7052b2c74fc56b76fcf1f2b72dfd0e2824b4f9be975701f2edd6ab32e65f7a6ed3acc
SSDEEP

3072:c+2ouKokGIVrOLCvq+ucVp3W6DiP60Y1G9gP:c5/IVrnHuu3WR60

Score

N/A

Malware Config

Signatures

Files

33985f8586557182e66d79dab33542c6e3cfeb91372867afaa08c4aba3d77498
.exe windows x86

3a4a09a3aeccfe1c1720c076c097c2cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAUpdateCA
CASetCertTypeKeySpec
CAGetCAProperty
CAFindByName
CACertTypeGetSecurity
CAFindCertTypeByName
CAEnumNextCertType
CAAddCACertificateType
CASetCertTypeExtension
CACloseCA
CAFreeCAProperty
CASetCertTypeFlags
CARemoveCACertificateType
CAUpdateCertType
CACreateCertType
CACertTypeSetSecurity
CAFreeCertTypeExtensions
CAGetCertTypePropertyEx
CAGetCertTypeKeySpec
CAEnumCertTypesForCA
CASetCertTypeProperty
CAGetCertTypeFlags
CAGetCertTypeProperty
CAFreeCertTypeProperty
CAGetCertTypeExtensions
CAEnumCertTypes
CACloseCertType

msvcrt

wcsstr
_purecall
__dllonexit
free
wcslen
_except_handler3
wcsrchr
??3@YAXPAX@Z
malloc
_wcsicmp
wcscpy
vswprintf
wcschr
wcstoul
_onexit
_wcsupr
wcscat
memmove
??1type_info@@UAE@XZ
?terminate@@YAXXZ
mbstowcs
__RTDynamicCast
_adjust_fdiv
_initterm
wcscmp
??2@YAPAXI@Z

advapi32

RegDeleteValueW
RegQueryValueExW
RegEnumKeyExW
RegCreateKeyExW
RegSetValueExW
RegCloseKey
RegDeleteKeyW
RegOpenKeyExW

user32

SetCursor
SetDlgItemTextW
SetWindowLongW
EnableWindow
LoadStringW
SendMessageW
GetParent
RegisterClipboardFormatW
EndDialog
LoadIconW
LoadImageW
GetDlgItemTextA
MessageBoxW
GetDC
ReleaseDC
LoadBitmapW
SystemParametersInfoW
SetWindowTextW
PostMessageW
WinHelpW
SendDlgItemMessageW
DialogBoxParamW
GetWindowLongW
LoadCursorW
GetDlgItem
wsprintfW
SetFocus
InsertMenuItemW

kernel32

FormatMessageW
GlobalFree
RemoveDirectoryA
FileTimeToLocalFileTime
SetLastError
GetTickCount
GlobalUnlock
GetComputerNameW
FileTimeToSystemTime
lstrcmpiW
WideCharToMultiByte
GetSystemWindowsDirectoryW
GetModuleFileNameW
CloseHandle
GetDateFormatW
lstrlenW
InitializeCriticalSection
GetStartupInfoA
LoadLibraryW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
DeleteCriticalSection
OutputDebugStringA
GlobalLock
GetModuleHandleA
GetLastError
GetCurrentProcess
GetSystemDefaultLangID
LocalFree
LocalReAlloc
CreateFileW
OutputDebugStringW
InterlockedDecrement
GetACP
GlobalAlloc
lstrcpyW
QueryPerformanceCounter
SetUnhandledExceptionFilter
IsBadReadPtr
InterlockedIncrement

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a4a09a3aeccfe1c1720c076c097c2cf

Headers

File Characteristics

Imports

certcli

msvcrt

advapi32

user32

kernel32

comctl32

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 121KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 121KB

.rsrc
Size: 24KB - Virtual size: 24KB