e0a16e89968e3c00446577b831634baf82be18e3a103d0bb0b3784f42959f3a5

Sharing

Copy URL

Twitter E-mail

General

Target

e0a16e89968e3c00446577b831634baf82be18e3a103d0bb0b3784f42959f3a5
Size

99KB
MD5

9587024f3e7adeb610d1c65b1fa7d87c
SHA1

650f6be98ac1ac7a9475caa18d99d97cc0c29b04
SHA256

e0a16e89968e3c00446577b831634baf82be18e3a103d0bb0b3784f42959f3a5
SHA512

6f7e16266490b465f0bc7f958cb238e50e671265cb2c5572b749c8df555d4d2bc0046d4d979d60a7124819dde5faeaa0641a558baf45da3ee5a5646326798dc7
SSDEEP

1536:uLOBMGDa+0K3SOljsZpKGUtpsi0NHwyHceK+4R3jRjlftpEhOzSuIFhybXKdgru:uLOda+ZCkBF+1ceKr3jbffnSuIFcb

Score

N/A

Malware Config

Signatures

Files

e0a16e89968e3c00446577b831634baf82be18e3a103d0bb0b3784f42959f3a5
.exe windows x86

d1bf97027f48ab1e08c85e9d21b0b22e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GlobalLock
GetDateFormatW
QueryPerformanceCounter
SetLastError
OutputDebugStringA
SetUnhandledExceptionFilter
OutputDebugStringW
GlobalAlloc
LoadLibraryW
GetSystemTimeAsFileTime
LocalFree
CreateFileW
GetCurrentProcess
lstrcmpiW
GetComputerNameW
GetSystemDefaultLangID
LocalReAlloc
GetEnvironmentStringsW
GetTickCount
GetSystemWindowsDirectoryW
WideCharToMultiByte
GetModuleFileNameW
DeleteCriticalSection
IsBadReadPtr
GetModuleHandleA
lstrcpyW
FormatMessageW
lstrlenW
FileTimeToSystemTime
InitializeCriticalSection
FileTimeToLocalFileTime
CloseHandle
RemoveDirectoryA
GetACP
GetLastError
InterlockedIncrement
GlobalUnlock
InterlockedDecrement
GlobalFree

certcli

CAFindCertTypeByName
CASetCertTypeKeySpec
CAFreeCAProperty
CAGetCertTypeKeySpec
CACloseCA
CACertTypeSetSecurity
CAEnumCertTypesForCA
CAAddCACertificateType
CASetCertTypeFlags
CASetCertTypeExtension
CAGetCAProperty
CAUpdateCA
CACloseCertType
CACertTypeGetSecurity
CAEnumNextCertType
CASetCertTypeProperty
CACreateCertType
CAFreeCertTypeExtensions
CAGetCertTypeProperty
CAUpdateCertType
CAFreeCertTypeProperty
CARemoveCACertificateType
CAFindByName
CAEnumCertTypes
CAGetCertTypeFlags
CAGetCertTypeExtensions
CAGetCertTypePropertyEx

user32

WinHelpW
InsertMenuItemW
SetWindowTextW
MessageBoxW
EndDialog
GetDC
SendMessageW
SetDlgItemTextW
SetFocus
LoadCursorW
LoadStringW
GetDlgItem
wsprintfW
SystemParametersInfoW
LoadImageW
LoadIconW
DialogBoxParamW
GetDlgItemTextA
LoadBitmapW
GetParent
SendDlgItemMessageW
ReleaseDC
PostMessageW
GetWindowLongW
SetWindowLongW
SetCursor
RegisterClipboardFormatW
EnableWindow

msvcrt

wcschr
wcslen
??1type_info@@UAE@XZ
free
vswprintf
_purecall
__RTDynamicCast
__dllonexit
_wcsupr
mbstowcs
_except_handler3
wcsrchr
wcscat
_adjust_fdiv
malloc
??3@YAXPAX@Z
wcscpy
wcstoul
_initterm
_onexit
??2@YAPAXI@Z
wcsstr
?terminate@@YAXXZ
_wcsicmp
memmove
wcscmp

comctl32

CreatePropertySheetPageW
PropertySheetW

advapi32

RegEnumKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d1bf97027f48ab1e08c85e9d21b0b22e

Headers

File Characteristics

Imports

kernel32

certcli

user32

msvcrt

comctl32

advapi32

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 120KB

.rsrc Size: 22KB - Virtual size: 22KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 120KB

.rsrc
Size: 22KB - Virtual size: 22KB