cdbfbfacbbb1a61910f9d5192bda6e1d5b47179abd60f49d3f6f746ea8fcf5f9

Sharing

Copy URL Twitter E-mail

General

Target

cdbfbfacbbb1a61910f9d5192bda6e1d5b47179abd60f49d3f6f746ea8fcf5f9
Size

103KB
MD5

35ace63686ac5fcd49ee9d6b7ecabf1e
SHA1

ef6948d5843a9d09eae2693da17f99fe7111771a
SHA256

cdbfbfacbbb1a61910f9d5192bda6e1d5b47179abd60f49d3f6f746ea8fcf5f9
SHA512

a858fc7e075b812e5c7d7567c5e566b85f7401f22e93051e13468dd73edaf66524948c2166aef490fea8b689398b13dc6a97464b03a6dd8f473ad048001861f2
SSDEEP

3072:ptkniS03KllHvNbV2tdXfqL6rdbBOb5iZnFUxY:ptk/06lllbTL6rdbBOVo

Score

N/A

Malware Config

Signatures

Files

cdbfbfacbbb1a61910f9d5192bda6e1d5b47179abd60f49d3f6f746ea8fcf5f9
.exe windows x86

e9b67837a19249aaa77f085a4723a63d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalReAlloc
GlobalUnlock
GetACP
GetSystemWindowsDirectoryW
InterlockedDecrement
WideCharToMultiByte
RemoveDirectoryA
FileTimeToLocalFileTime
GetStartupInfoA
CreateFileW
LocalFree
CloseHandle
lstrcmpiW
OutputDebugStringA
GetEnvironmentStringsW
LoadLibraryW
OutputDebugStringW
SetLastError
SetUnhandledExceptionFilter
QueryPerformanceCounter
FormatMessageW
GetModuleFileNameW
GlobalAlloc
IsBadReadPtr
InitializeCriticalSection
GetTickCount
GetSystemDefaultLangID
GetDateFormatW
GetLastError
InterlockedIncrement
GetModuleHandleA
DeleteCriticalSection
FileTimeToSystemTime
GetSystemTimeAsFileTime
GetComputerNameW
GlobalFree
GetCurrentProcess
GlobalLock
lstrlenW
lstrcpyW

comctl32

PropertySheetW
CreatePropertySheetPageW

user32

ReleaseDC
SetWindowLongW
GetDlgItemTextA
LoadStringW
LoadIconW
LoadImageW
EnableWindow
GetDlgItem
InsertMenuItemW
LoadCursorW
SetDlgItemTextW
wsprintfW
PostMessageW
LoadBitmapW
DialogBoxParamW
RegisterClipboardFormatW
WinHelpW
SendDlgItemMessageW
SetCursor
SetWindowTextW
GetParent
GetDC
SendMessageW
SystemParametersInfoW
GetWindowLongW
MessageBoxW
SetFocus
EndDialog

certcli

CAAddCACertificateType
CASetCertTypeFlags
CACertTypeGetSecurity
CAGetCertTypeFlags
CACloseCA
CACreateCertType
CAFreeCAProperty
CAEnumCertTypesForCA
CACertTypeSetSecurity
CAUpdateCertType
CASetCertTypeProperty
CAFreeCertTypeProperty
CAGetCertTypePropertyEx
CAGetCertTypeExtensions
CAFindByName
CAGetCAProperty
CAGetCertTypeProperty
CAFindCertTypeByName
CASetCertTypeKeySpec
CARemoveCACertificateType
CAEnumNextCertType
CASetCertTypeExtension
CAFreeCertTypeExtensions
CACloseCertType
CAEnumCertTypes
CAGetCertTypeKeySpec
CAUpdateCA

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyExW
RegCloseKey
RegSetValueExW
RegDeleteKeyW

msvcrt

_adjust_fdiv
_except_handler3
wcsstr
?terminate@@YAXXZ
__dllonexit
wcslen
_wcsicmp
malloc
wcscmp
??1type_info@@UAE@XZ
wcscpy
??3@YAXPAX@Z
vswprintf
_purecall
wcschr
wcsrchr
??2@YAPAXI@Z
_initterm
wcstoul
_onexit
__RTDynamicCast
mbstowcs
free
memmove
_wcsupr
wcscat

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9b67837a19249aaa77f085a4723a63d

Headers

File Characteristics

Imports

kernel32

comctl32

user32

certcli

advapi32

msvcrt

Sections

.text Size: 47KB - Virtual size: 47KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 120KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 47KB - Virtual size: 47KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 120KB

.rsrc
Size: 24KB - Virtual size: 24KB