978e1e41caf6dad8aa332731111b7c001da43426eef24b8637b52eeea77f08f0

Sharing

Copy URL

Twitter E-mail

General

Target

978e1e41caf6dad8aa332731111b7c001da43426eef24b8637b52eeea77f08f0
Size

99KB
MD5

02bbf12b26e34473e3ed3281a135fb01
SHA1

d94684a48336b2e0a726efff8494f95f11552911
SHA256

978e1e41caf6dad8aa332731111b7c001da43426eef24b8637b52eeea77f08f0
SHA512

943808ffa3b47f154d3a61d44feac884bc3206ffaf4cefcbf60857b1ba48279fba578ce1e02b0d1698d158042ef4148b582c3e0959c043c2cb811174e6d81176
SSDEEP

3072:u8GFDVY1qfQveFZipuNE2OdOlY4txf76Ajev2:Kk1qIve6puNE2OdcRxf7O

Score

N/A

Malware Config

Signatures

Files

978e1e41caf6dad8aa332731111b7c001da43426eef24b8637b52eeea77f08f0
.exe windows x86

13e6cca95af54e410c6a0838704acf77

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

mbstowcs
_initterm
__RTDynamicCast
__dllonexit
wcscmp
wcscpy
?terminate@@YAXXZ
wcschr
_onexit
_wcsicmp
??2@YAPAXI@Z
_adjust_fdiv
wcslen
wcscat
wcsrchr
free
_purecall
memmove
wcstoul
??1type_info@@UAE@XZ
_except_handler3
vswprintf
wcsstr
malloc
_wcsupr
??3@YAXPAX@Z

kernel32

GetLastError
DeleteCriticalSection
GlobalLock
FileTimeToSystemTime
InterlockedDecrement
OutputDebugStringA
GetEnvironmentStringsW
IsBadReadPtr
GetModuleHandleA
GetModuleFileNameW
RemoveDirectoryA
InitializeCriticalSection
GetCurrentProcess
GetACP
lstrcpyW
LoadLibraryW
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
GlobalFree
GetTickCount
QueryPerformanceCounter
LocalFree
SetUnhandledExceptionFilter
lstrlenW
LocalReAlloc
GetDateFormatW
InterlockedIncrement
WideCharToMultiByte
CloseHandle
GetSystemWindowsDirectoryW
GetStartupInfoA
GlobalUnlock
GetComputerNameW
SetLastError
CreateFileW
GetSystemDefaultLangID
OutputDebugStringW
GlobalAlloc
lstrcmpiW
FormatMessageW

user32

SetWindowTextW
EndDialog
GetWindowLongW
MessageBoxW
ReleaseDC
LoadBitmapW
WinHelpW
GetParent
LoadIconW
LoadStringW
SetFocus
SetDlgItemTextW
PostMessageW
GetDlgItemTextA
GetDlgItem
LoadCursorW
RegisterClipboardFormatW
EnableWindow
DialogBoxParamW
SystemParametersInfoW
SetCursor
InsertMenuItemW
SendDlgItemMessageW
SetWindowLongW
GetDC
LoadImageW
wsprintfW
SendMessageW

certcli

CARemoveCACertificateType
CAEnumNextCertType
CAEnumCertTypesForCA
CACreateCertType
CACloseCA
CAUpdateCertType
CAGetCertTypePropertyEx
CASetCertTypeExtension
CASetCertTypeFlags
CAEnumCertTypes
CAFreeCertTypeExtensions
CAGetCertTypeExtensions
CAGetCertTypeFlags
CAGetCAProperty
CAGetCertTypeProperty
CASetCertTypeProperty
CASetCertTypeKeySpec
CAAddCACertificateType
CAFindByName
CAGetCertTypeKeySpec
CACloseCertType
CAFreeCAProperty
CAFindCertTypeByName
CACertTypeSetSecurity
CACertTypeGetSecurity
CAFreeCertTypeProperty
CAUpdateCA

gdi32

CreateFontIndirectW
DeleteObject
GetDeviceCaps

advapi32

RegSetValueExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
RegOpenKeyExW
RegQueryValueExW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13e6cca95af54e410c6a0838704acf77

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

certcli

gdi32

advapi32

comctl32

Sections

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 102KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 102KB

.rsrc
Size: 23KB - Virtual size: 22KB