e249606b6f14c51f412dad474995a1c5c699f5e32befc094ed5fde7f67f2bd64

Sharing

Copy URL Twitter E-mail

General

Target

e249606b6f14c51f412dad474995a1c5c699f5e32befc094ed5fde7f67f2bd64
Size

104KB
MD5

7ce492be1637359e4c9d5e29e3ccd763
SHA1

d4adeb5289d8c62eb532849b134300fdbe905795
SHA256

e249606b6f14c51f412dad474995a1c5c699f5e32befc094ed5fde7f67f2bd64
SHA512

968eb2cb2d92503816a17b5dc8eb72eab936775e2f3997cf934e124dfac6bdfb56fe13dceff4d7688c27c1c3391b90b46b3736d2d113799e7ab7f01563ced19b
SSDEEP

1536:XqU1gm0EOXUgj1+GjmYBF17hiL43aF6YvinfPURsN48BvdYSWe7M2BSJeE:ImcXx1+AmYnGL4KFd0fPq01BDlM28d

Score

N/A

Malware Config

Signatures

Files

e249606b6f14c51f412dad474995a1c5c699f5e32befc094ed5fde7f67f2bd64
.exe windows x86

877b79e1bbd1db204bf5051774c7925a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToSystemTime
GetACP
GetDateFormatW
SetUnhandledExceptionFilter
lstrcpyW
DeleteCriticalSection
QueryPerformanceCounter
GlobalLock
FileTimeToLocalFileTime
GetSystemDefaultLangID
InitializeCriticalSection
CreateFileW
GlobalAlloc
GlobalFree
GetLastError
OutputDebugStringW
GlobalUnlock
lstrcmpiW
InterlockedIncrement
CloseHandle
GetStartupInfoA
LocalFree
GetModuleHandleA
GetModuleFileNameW
GetComputerNameW
LoadLibraryW
SetLastError
GetTickCount
WideCharToMultiByte
GetSystemWindowsDirectoryW
GetSystemTimeAsFileTime
lstrlenW
InterlockedDecrement
OutputDebugStringA
FormatMessageW
RemoveDirectoryA
IsBadReadPtr
GetCurrentProcess
LocalReAlloc
GetEnvironmentStringsW

advapi32

RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW

certcli

CAGetCertTypeKeySpec
CASetCertTypeExtension
CAEnumCertTypes
CAUpdateCA
CAFindCertTypeByName
CACloseCertType
CAFreeCAProperty
CAUpdateCertType
CASetCertTypeFlags
CAEnumNextCertType
CACreateCertType
CASetCertTypeKeySpec
CAGetCertTypeProperty
CACertTypeGetSecurity
CAAddCACertificateType
CAFreeCertTypeProperty
CASetCertTypeProperty
CAEnumCertTypesForCA
CAFindByName
CAFreeCertTypeExtensions
CAGetCertTypeFlags
CARemoveCACertificateType
CAGetCAProperty
CACloseCA
CAGetCertTypeExtensions
CAGetCertTypePropertyEx
CACertTypeSetSecurity

msvcrt

wcscmp
_purecall
wcstoul
_initterm
free
wcschr
wcscat
_wcsupr
__RTDynamicCast
mbstowcs
??1type_info@@UAE@XZ
wcslen
memmove
?terminate@@YAXXZ
wcsrchr
_wcsicmp
_adjust_fdiv
??2@YAPAXI@Z
_except_handler3
??3@YAXPAX@Z
__dllonexit
wcscpy
malloc
wcsstr
_onexit
vswprintf

user32

ReleaseDC
SetDlgItemTextW
SetWindowLongW
SetWindowTextW
SetFocus
wsprintfW
InsertMenuItemW
SetCursor
PostMessageW
EnableWindow
SendDlgItemMessageW
MessageBoxW
SystemParametersInfoW
GetDlgItem
LoadImageW
EndDialog
RegisterClipboardFormatW
LoadIconW
GetDlgItemTextA
DialogBoxParamW
LoadBitmapW
WinHelpW
LoadStringW
SendMessageW
LoadCursorW
GetDC
GetWindowLongW
GetParent

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

877b79e1bbd1db204bf5051774c7925a

Headers

File Characteristics

Imports

kernel32

advapi32

certcli

msvcrt

user32

comctl32

Sections

.text Size: 49KB - Virtual size: 49KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 93KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 49KB - Virtual size: 49KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 93KB

.rsrc
Size: 24KB - Virtual size: 23KB