e2252d045e878032e7726264dabfa1827c79b6df1c1f17e0d4245414ff75481d

Sharing

Copy URL

Twitter E-mail

General

Target

e2252d045e878032e7726264dabfa1827c79b6df1c1f17e0d4245414ff75481d
Size

102KB
MD5

9cac68388e156ffac109043746eceff0
SHA1

06d7461cc296dc2022fc713f66b864ab4b4b66eb
SHA256

e2252d045e878032e7726264dabfa1827c79b6df1c1f17e0d4245414ff75481d
SHA512

857777032e07ccd2a554d5842b4d130c09f6bf5163560350f1ca56fce61eb4bd4531dc6d7aafcf52ce130bac8f69ca95b0522f2194def1fd89f8a9dc21a50656
SSDEEP

1536:MN4JbBpTg4fiAnZtNN65pMklMleckUMOYXfA8QT/sFpTxeXc3gt0RtWww4FRFChe:dv3fpNc5WkqX7rNWLleXNctWwP8h

Score

N/A

Malware Config

Signatures

Files

e2252d045e878032e7726264dabfa1827c79b6df1c1f17e0d4245414ff75481d
.exe windows x86

6d14c8fe01a8284a17531dd1849362ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CACloseCertType
CAGetCertTypeFlags
CAAddCACertificateType
CASetCertTypeProperty
CAGetCertTypePropertyEx
CAFindCertTypeByName
CASetCertTypeFlags
CAGetCertTypeExtensions
CACertTypeSetSecurity
CAFreeCAProperty
CAUpdateCA
CAGetCertTypeProperty
CAGetCertTypeKeySpec
CAEnumNextCertType
CACreateCertType
CAFreeCertTypeExtensions
CACloseCA
CAEnumCertTypesForCA
CAEnumCertTypes
CAUpdateCertType
CASetCertTypeExtension
CARemoveCACertificateType
CACertTypeGetSecurity
CASetCertTypeKeySpec
CAFreeCertTypeProperty
CAFindByName
CAGetCAProperty

msvcrt

__RTDynamicCast
wcschr
wcsrchr
_wcsupr
??1type_info@@UAE@XZ
wcstoul
wcslen
__dllonexit
wcsstr
_except_handler3
_onexit
malloc
wcscpy
??2@YAPAXI@Z
?terminate@@YAXXZ
wcscmp
??3@YAXPAX@Z
memmove
vswprintf
_adjust_fdiv
free
mbstowcs
wcscat
_wcsicmp
_initterm

user32

MessageBoxW
RegisterClipboardFormatW
EndDialog
GetParent
SendDlgItemMessageW
SetDlgItemTextW
LoadImageW
LoadCursorW
WinHelpW
GetDC
SetWindowLongW
GetDlgItemTextA
LoadStringW
GetWindowLongW
ReleaseDC
SetWindowTextW
PostMessageW
EnableWindow
DialogBoxParamW
GetDlgItem
SetCursor
wsprintfW
LoadBitmapW
SystemParametersInfoW
SendMessageW
LoadIconW
InsertMenuItemW
SetFocus

advapi32

RegEnumKeyExW
RegOpenKeyExW
RegSetValueExW
RegCloseKey
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW
RegQueryValueExW

kernel32

CreateFileW
IsBadReadPtr
OutputDebugStringA
lstrlenW
LocalReAlloc
WideCharToMultiByte
SetUnhandledExceptionFilter
GetCPInfo
FormatMessageW
SetLastError
OutputDebugStringW
FileTimeToSystemTime
RemoveDirectoryA
lstrcpyW
GetStartupInfoA
CloseHandle
InterlockedDecrement
InterlockedIncrement
GlobalUnlock
GetLastError
GetModuleHandleA
GetSystemWindowsDirectoryW
lstrcmpiW
LocalFree
GetComputerNameW
GetSystemDefaultLangID
GlobalAlloc
GetCurrentProcess
GetModuleFileNameW
GlobalFree
GetDateFormatW
GetTickCount
GetEnvironmentStringsW
DeleteCriticalSection
QueryPerformanceCounter
InitializeCriticalSection
LoadLibraryW
GetProcAddress
FileTimeToLocalFileTime
GlobalLock
GetSystemTimeAsFileTime

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d14c8fe01a8284a17531dd1849362ce

Headers

File Characteristics

Imports

certcli

msvcrt

user32

advapi32

kernel32

comctl32

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 123KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 123KB

.rsrc
Size: 24KB - Virtual size: 24KB