e7a6238ba5cea1453e5ddcffaee36e93ff01da986dfe7405c1bfd646a917c84c

Sharing

Copy URL

Twitter E-mail

General

Target

e7a6238ba5cea1453e5ddcffaee36e93ff01da986dfe7405c1bfd646a917c84c
Size

103KB
MD5

33f348289d9e5427a6116c9056249340
SHA1

9be5471a6cecf5e6ffd668d4911f60ce3adc5f2f
SHA256

e7a6238ba5cea1453e5ddcffaee36e93ff01da986dfe7405c1bfd646a917c84c
SHA512

746f353117c51015744b6d2bd21abfc0e0ebc79faf7e7fd89b8c22d0b8c4d47c8d7f4aedc529a5490c568a2b0faeef12403e2f6edd5b127fa7f6b5992b29eedf
SSDEEP

3072:zZVmlhGyXJoc4R2OCigCWOMK/ORxJA2pb9DPFv:iPuc4AOVgO2vJA2pFt

Score

N/A

Malware Config

Signatures

Files

e7a6238ba5cea1453e5ddcffaee36e93ff01da986dfe7405c1bfd646a917c84c
.exe windows x86

2325111097032c0c4c85e2b3522f4ec3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_onexit
_adjust_fdiv
_wcsupr
wcschr
_except_handler3
?terminate@@YAXXZ
__RTDynamicCast
free
mbstowcs
wcslen
??3@YAXPAX@Z
_wcsicmp
??2@YAPAXI@Z
??1type_info@@UAE@XZ
wcstoul
vswprintf
malloc
_initterm
wcscmp
memmove
wcscpy
wcsrchr
wcsstr
__dllonexit
wcscat

comctl32

CreatePropertySheetPageW
PropertySheetW

advapi32

RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegQueryValueExW
RegEnumKeyExW
RegDeleteKeyW
RegCloseKey

kernel32

LocalFree
CreateFileW
lstrlenW
FileTimeToLocalFileTime
QueryPerformanceCounter
GetLastError
GetSystemWindowsDirectoryW
GetSystemTimeAsFileTime
CloseHandle
OutputDebugStringW
GlobalAlloc
DeleteCriticalSection
GlobalUnlock
IsBadReadPtr
GetCPInfo
GetModuleFileNameW
InterlockedDecrement
GetSystemDefaultLangID
GetEnvironmentStringsW
GetTickCount
SetLastError
GetDateFormatW
GetStartupInfoA
GetModuleHandleA
GetProcAddress
GetCurrentProcess
lstrcpyW
FormatMessageW
LocalReAlloc
RemoveDirectoryA
SetUnhandledExceptionFilter
OutputDebugStringA
InitializeCriticalSection
LoadLibraryW
FileTimeToSystemTime
GlobalFree
InterlockedIncrement
WideCharToMultiByte
GetComputerNameW
lstrcmpiW
GlobalLock

certcli

CACreateCertType
CACloseCertType
CAEnumCertTypes
CAFreeCertTypeExtensions
CACloseCA
CASetCertTypeExtension
CAGetCertTypeExtensions
CAFreeCAProperty
CAFreeCertTypeProperty
CAAddCACertificateType
CAFindCertTypeByName
CAGetCertTypePropertyEx
CAGetCertTypeFlags
CACertTypeGetSecurity
CAEnumNextCertType
CAGetCertTypeKeySpec
CASetCertTypeProperty
CAFindByName
CAGetCAProperty
CAGetCertTypeProperty
CARemoveCACertificateType
CASetCertTypeKeySpec
CASetCertTypeFlags
CAUpdateCertType
CAEnumCertTypesForCA
CACertTypeSetSecurity
CAUpdateCA

user32

WinHelpW
LoadImageW
SendMessageW
SetWindowTextW
SetCursor
GetDlgItemTextA
GetDC
SetFocus
wsprintfW
SendDlgItemMessageW
PostMessageW
ReleaseDC
LoadStringW
RegisterClipboardFormatW
LoadBitmapW
SetDlgItemTextW
GetParent
DialogBoxParamW
InsertMenuItemW
LoadIconW
GetDlgItem
EnableWindow
SetWindowLongW
EndDialog
MessageBoxW
SystemParametersInfoW
GetWindowLongW
LoadCursorW

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2325111097032c0c4c85e2b3522f4ec3

Headers

File Characteristics

Imports

msvcrt

comctl32

advapi32

kernel32

certcli

user32

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 67KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 67KB

.rsrc
Size: 24KB - Virtual size: 23KB