bf954c5180ab91deba96b759d3764ddc6d73f52513996bc39f1fa01ea51082f2

Sharing

Copy URL

Twitter E-mail

General

Target

bf954c5180ab91deba96b759d3764ddc6d73f52513996bc39f1fa01ea51082f2
Size

101KB
MD5

4c4f943775eeb2329acfdad3dc84b1e8
SHA1

0dec83d55c6d3b1af9c612de1a6083731a9c05a3
SHA256

bf954c5180ab91deba96b759d3764ddc6d73f52513996bc39f1fa01ea51082f2
SHA512

9ef54a63218e5d76797f6e67902f821138ac4951a53775001815a86b79ff1eb75e873b3bf24957ac3b4b88868d8c37791269af88b330b645158af19b1ae75973
SSDEEP

3072:OLgbXgEmkfkPr7L7Ki1P21k8suwQ5Dc4wRln:OSwT1T7L73pRQ5g

Score

N/A

Malware Config

Signatures

Files

bf954c5180ab91deba96b759d3764ddc6d73f52513996bc39f1fa01ea51082f2
.exe windows x86

7a9d42acd8fce1294d7b9bcd5df02ad9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_onexit
?terminate@@YAXXZ
??2@YAPAXI@Z
_wcsupr
wcschr
mbstowcs
_wcsicmp
??1type_info@@UAE@XZ
wcslen
_initterm
wcstoul
wcscat
__RTDynamicCast
_adjust_fdiv
malloc
free
wcsstr
_except_handler3
memmove
__dllonexit
??3@YAXPAX@Z
wcsrchr
vswprintf
wcscpy
wcscmp

user32

GetWindowLongW
ReleaseDC
EnableWindow
GetDlgItem
SystemParametersInfoW
GetDlgItemTextA
PostMessageW
SetWindowTextW
EndDialog
wsprintfW
WinHelpW
SetWindowLongW
InsertMenuItemW
MessageBoxW
SetDlgItemTextW
RegisterClipboardFormatW
GetDC
DialogBoxParamW
GetParent
SetFocus
SetCursor
LoadImageW
SendMessageW
LoadIconW
LoadCursorW
SendDlgItemMessageW
LoadStringW
LoadBitmapW

kernel32

DeleteCriticalSection
GetSystemTimeAsFileTime
GlobalUnlock
GetModuleHandleA
OutputDebugStringW
GetTickCount
InterlockedDecrement
GlobalAlloc
GetEnvironmentStringsW
lstrlenW
GetDateFormatW
GetCPInfo
RemoveDirectoryA
WideCharToMultiByte
LoadLibraryW
lstrcmpiW
lstrcpyW
FileTimeToLocalFileTime
GetLastError
GetProcAddress
GetCurrentProcess
InterlockedIncrement
CloseHandle
OutputDebugStringA
SetUnhandledExceptionFilter
SetLastError
GetComputerNameW
InitializeCriticalSection
GetSystemDefaultLangID
LocalReAlloc
LocalFree
FileTimeToSystemTime
QueryPerformanceCounter
GlobalFree
IsBadReadPtr
GetSystemWindowsDirectoryW
FormatMessageW
CreateFileW
GetStartupInfoA
GetModuleFileNameW
GlobalLock

certcli

CAAddCACertificateType
CAGetCertTypeKeySpec
CAEnumNextCertType
CACreateCertType
CAFindCertTypeByName
CASetCertTypeExtension
CASetCertTypeKeySpec
CASetCertTypeProperty
CACertTypeGetSecurity
CAGetCAProperty
CAGetCertTypeExtensions
CAUpdateCA
CAGetCertTypeProperty
CAUpdateCertType
CAFreeCAProperty
CAFreeCertTypeProperty
CACloseCA
CARemoveCACertificateType
CAEnumCertTypes
CAEnumCertTypesForCA
CAFindByName
CAFreeCertTypeExtensions
CACertTypeSetSecurity
CACloseCertType
CAGetCertTypePropertyEx
CASetCertTypeFlags
CAGetCertTypeFlags

advapi32

RegDeleteKeyW
RegSetValueExW
RegDeleteValueW
RegOpenKeyExW
RegCreateKeyExW
RegQueryValueExW
RegEnumKeyExW
RegCloseKey

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a9d42acd8fce1294d7b9bcd5df02ad9

Headers

File Characteristics

Imports

msvcrt

user32

kernel32

certcli

advapi32

comctl32

Sections

.text Size: 46KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 103KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 46KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 103KB

.rsrc
Size: 23KB - Virtual size: 23KB