e02abd7550933a2fb46c135c7418a80c48a3f4a35615212884e6c613199719c3

Sharing

Copy URL Twitter E-mail

General

Target

e02abd7550933a2fb46c135c7418a80c48a3f4a35615212884e6c613199719c3
Size

102KB
MD5

4cfe4c3cca12cefb289b82075e4a854a
SHA1

02d3aac31778c22023456b61266e17b78ab8edc2
SHA256

e02abd7550933a2fb46c135c7418a80c48a3f4a35615212884e6c613199719c3
SHA512

f1908dfc7eeba863bd2ac854fad0e314ef7e278449a90639c2667be6a1633dcb88d43fb645ce336f0ec84fcf431446df28b44ccf177ebf341cfa9ec7d8bd787d
SSDEEP

1536:VaO0D+XiVUxCXxEgjmY4H7jKdoO/Z017IFY7W6vE46/amR46Hli:VZiR2vF3FO/ZaIFToEFamK6Hli

Score

N/A

Malware Config

Signatures

Files

e02abd7550933a2fb46c135c7418a80c48a3f4a35615212884e6c613199719c3
.exe windows x86

758a81e6ab7132dc1bbc7de5e894b7fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToSystemTime
lstrcpyW
QueryPerformanceCounter
GetCurrentProcess
GetModuleHandleA
LoadLibraryW
LocalFree
FileTimeToLocalFileTime
GetTickCount
CreateFileW
DeleteCriticalSection
GetComputerNameW
LocalReAlloc
WideCharToMultiByte
GetDateFormatW
InterlockedIncrement
OutputDebugStringW
SetUnhandledExceptionFilter
SetLastError
CloseHandle
GlobalUnlock
GetModuleFileNameW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GlobalLock
InitializeCriticalSection
IsBadReadPtr
GetProcAddress
GetStartupInfoA
GlobalAlloc
lstrlenW
GlobalFree
GetSystemDefaultLangID
InterlockedDecrement
GetLastError
lstrcmpiW
GetSystemWindowsDirectoryW
OutputDebugStringA
FormatMessageW
GetCPInfo
RemoveDirectoryA

msvcrt

malloc
__RTDynamicCast
??1type_info@@UAE@XZ
__dllonexit
wcstoul
?terminate@@YAXXZ
??2@YAPAXI@Z
_adjust_fdiv
wcscpy
??3@YAXPAX@Z
wcscmp
mbstowcs
free
_wcsicmp
_initterm
wcslen
memmove
_wcsupr
wcsstr
_except_handler3
vswprintf
wcschr
wcscat
wcsrchr
_onexit

certcli

CAFindCertTypeByName
CAFreeCAProperty
CAGetCAProperty
CAFindByName
CAGetCertTypeExtensions
CARemoveCACertificateType
CASetCertTypeKeySpec
CAEnumCertTypes
CACertTypeSetSecurity
CAUpdateCA
CASetCertTypeExtension
CAGetCertTypeKeySpec
CAEnumNextCertType
CAFreeCertTypeExtensions
CAFreeCertTypeProperty
CAGetCertTypeFlags
CACreateCertType
CACloseCertType
CAEnumCertTypesForCA
CAGetCertTypeProperty
CASetCertTypeFlags
CACertTypeGetSecurity
CAAddCACertificateType
CASetCertTypeProperty
CAUpdateCertType
CACloseCA
CAGetCertTypePropertyEx

user32

SendDlgItemMessageW
GetDC
SetWindowTextW
GetDlgItem
DialogBoxParamW
GetDlgItemTextA
LoadIconW
RegisterClipboardFormatW
SystemParametersInfoW
InsertMenuItemW
LoadCursorW
wsprintfW
SendMessageW
SetCursor
LoadStringW
GetWindowLongW
MessageBoxW
SetWindowLongW
PostMessageW
LoadImageW
GetParent
ReleaseDC
EnableWindow
EndDialog
SetDlgItemTextW
LoadBitmapW
SetFocus
WinHelpW

advapi32

RegOpenKeyExW
RegSetValueExW
RegQueryValueExW
RegEnumKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegCloseKey

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

758a81e6ab7132dc1bbc7de5e894b7fb

Headers

File Characteristics

Imports

kernel32

msvcrt

certcli

user32

advapi32

comctl32

Sections

.text Size: 46KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 83KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 46KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 83KB

.rsrc
Size: 24KB - Virtual size: 24KB