9720f5b1169f19011a516ce39de34ce8d70be125f0906d5f487ddff02e612ad3

Sharing

Copy URL

Twitter E-mail

General

Target

9720f5b1169f19011a516ce39de34ce8d70be125f0906d5f487ddff02e612ad3
Size

99KB
MD5

2ddd7cb13deba1694f611aae34803ff8
SHA1

680c8b59e3c47d977891f1d6cbba0500234a63dc
SHA256

9720f5b1169f19011a516ce39de34ce8d70be125f0906d5f487ddff02e612ad3
SHA512

a2dc0d5b95eb2dc595a7e785b7b1422049ad58700691f1d2c432653dab3a3d40f4b3de068c037dab69bcb670ab29ca57e97715dde313d708302a70d55b9e9972
SSDEEP

3072:pm0UExHPlVCbRXxkYRr2NPEKEOjnluq9xxW:9UEJXCpCYl2aKvn0q9xxW

Score

N/A

Malware Config

Signatures

Files

9720f5b1169f19011a516ce39de34ce8d70be125f0906d5f487ddff02e612ad3
.exe windows x86

4c4673f1ab0365634cc52a2e468f7601

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LocalFree
OutputDebugStringW
GetSystemDefaultLangID
DeleteCriticalSection
QueryPerformanceCounter
GlobalFree
lstrlenW
SetLastError
GetStartupInfoA
InterlockedIncrement
OutputDebugStringA
CreateFileW
LocalReAlloc
GetCurrentProcess
GetTickCount
lstrcpyW
IsBadReadPtr
FileTimeToLocalFileTime
GetDateFormatW
GetSystemWindowsDirectoryW
GetProcAddress
GlobalAlloc
SetUnhandledExceptionFilter
WideCharToMultiByte
GetEnvironmentStringsW
InitializeCriticalSection
GetModuleFileNameW
RemoveDirectoryA
CloseHandle
GetLastError
InterlockedDecrement
GetCPInfo
lstrcmpiW
LoadLibraryW
GlobalUnlock
GetComputerNameW
FormatMessageW
GetSystemTimeAsFileTime
GlobalLock
FileTimeToSystemTime

user32

SetCursor
LoadCursorW
InsertMenuItemW
ReleaseDC
LoadImageW
GetWindowLongW
EnableWindow
SendDlgItemMessageW
WinHelpW
SetWindowTextW
SetWindowLongW
LoadStringW
GetDlgItemTextA
PostMessageW
LoadIconW
EndDialog
wsprintfW
GetDlgItem
SetDlgItemTextW
SendMessageW
GetParent
LoadBitmapW
SystemParametersInfoW
GetDC
MessageBoxW
DialogBoxParamW
RegisterClipboardFormatW
SetFocus

advapi32

RegQueryValueExW
RegCloseKey
RegEnumKeyExW
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteValueW

certcli

CAGetCertTypeFlags
CAUpdateCertType
CACreateCertType
CAGetCAProperty
CAAddCACertificateType
CASetCertTypeProperty
CAGetCertTypeKeySpec
CACertTypeSetSecurity
CAFreeCAProperty
CAGetCertTypePropertyEx
CAEnumCertTypes
CAFindByName
CAUpdateCA
CAGetCertTypeExtensions
CASetCertTypeExtension
CAFreeCertTypeProperty
CAEnumNextCertType
CACloseCA
CAFreeCertTypeExtensions
CAGetCertTypeProperty
CACloseCertType
CAFindCertTypeByName
CASetCertTypeFlags
CASetCertTypeKeySpec
CACertTypeGetSecurity
CAEnumCertTypesForCA
CARemoveCACertificateType

comctl32

CreatePropertySheetPageW
PropertySheetW

msvcrt

??2@YAPAXI@Z
wcscat
_wcsicmp
vswprintf
memmove
wcschr
wcsstr
__dllonexit
_wcsupr
__RTDynamicCast
??1type_info@@UAE@XZ
wcscpy
_initterm
_except_handler3
_adjust_fdiv
_onexit
??3@YAXPAX@Z
wcsrchr
wcstoul
?terminate@@YAXXZ
wcscmp
malloc
wcslen
mbstowcs
free

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c4673f1ab0365634cc52a2e468f7601

Headers

File Characteristics

Imports

kernel32

user32

advapi32

certcli

comctl32

msvcrt

Sections

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 87KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 87KB

.rsrc
Size: 23KB - Virtual size: 23KB