91a8577763e44721affbdfbeae792f2b714d023bc0091019c5a596104bac0ec8

Sharing

Copy URL Twitter E-mail

General

Target

91a8577763e44721affbdfbeae792f2b714d023bc0091019c5a596104bac0ec8
Size

101KB
MD5

16f791b926064936d96c31aa34d9d888
SHA1

b9670993e7dbf5cdf89e4afe547313f33db5fb30
SHA256

91a8577763e44721affbdfbeae792f2b714d023bc0091019c5a596104bac0ec8
SHA512

647483b194592e5c66800b142c1fda2dc2fbef83da765dd39582bb2849f75d3c18a4bcb0c995d8358d0858899cf8ad7dfb22e8a6ffc55a51efb7fb3b7a03896b
SSDEEP

3072:VYLrB9uQMopnTHpzW+w65l6MjrpB6EGx:CB9SoNTHp3w+ljjrpZG

Score

N/A

Malware Config

Signatures

Files

91a8577763e44721affbdfbeae792f2b714d023bc0091019c5a596104bac0ec8
.exe windows x86

6946e6300bd3f0f331065df5dfe44acc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAEnumCertTypes
CAUpdateCertType
CAGetCAProperty
CAAddCACertificateType
CASetCertTypeFlags
CAFreeCertTypeProperty
CACloseCA
CAGetCertTypeProperty
CACloseCertType
CAUpdateCA
CASetCertTypeProperty
CAGetCertTypeFlags
CASetCertTypeExtension
CACertTypeGetSecurity
CAFindCertTypeByName
CAEnumNextCertType
CAGetCertTypeExtensions
CAGetCertTypePropertyEx
CAFreeCertTypeExtensions
CAEnumCertTypesForCA
CACreateCertType
CAGetCertTypeKeySpec
CACertTypeSetSecurity
CAFreeCAProperty
CAFindByName
CARemoveCACertificateType
CASetCertTypeKeySpec

kernel32

FileTimeToLocalFileTime
GetLastError
IsBadReadPtr
GetStartupInfoA
GetSystemDefaultLangID
GetEnvironmentStringsW
lstrlenW
InterlockedDecrement
lstrcpyW
InitializeCriticalSection
GetSystemTimeAsFileTime
GlobalFree
GetSystemWindowsDirectoryW
SetUnhandledExceptionFilter
GlobalAlloc
GetACP
OutputDebugStringA
GetModuleFileNameW
GetComputerNameW
FormatMessageW
RemoveDirectoryA
lstrcmpiW
InterlockedIncrement
QueryPerformanceCounter
GetTickCount
GlobalUnlock
CreateFileW
CloseHandle
LoadLibraryW
GetDateFormatW
GlobalLock
LocalReAlloc
FileTimeToSystemTime
GetModuleHandleA
LocalFree
GetCurrentProcess
WideCharToMultiByte
SetLastError
DeleteCriticalSection
OutputDebugStringW

user32

LoadStringW
LoadIconW
SetWindowTextW
LoadImageW
RegisterClipboardFormatW
SetDlgItemTextW
SetWindowLongW
WinHelpW
SetCursor
MessageBoxW
EnableWindow
SendMessageW
EndDialog
DialogBoxParamW
InsertMenuItemW
ReleaseDC
PostMessageW
wsprintfW
SetFocus
GetDC
GetDlgItemTextA
SendDlgItemMessageW
LoadCursorW
LoadBitmapW
GetParent
GetWindowLongW
GetDlgItem
SystemParametersInfoW

advapi32

RegDeleteKeyW
RegSetValueExW
RegCloseKey
RegQueryValueExW
RegEnumKeyExW
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW

msvcrt

wcscpy
wcslen
memmove
__RTDynamicCast
wcsrchr
__dllonexit
free
_onexit
?terminate@@YAXXZ
_wcsicmp
_purecall
_adjust_fdiv
wcsstr
mbstowcs
wcscat
vswprintf
??3@YAXPAX@Z
wcstoul
wcscmp
_except_handler3
_wcsupr
malloc
??1type_info@@UAE@XZ
??2@YAPAXI@Z
wcschr
_initterm

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6946e6300bd3f0f331065df5dfe44acc

Headers

File Characteristics

Imports

certcli

kernel32

user32

advapi32

msvcrt

comctl32

Sections

.text Size: 46KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 99KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 46KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 99KB

.rsrc
Size: 24KB - Virtual size: 23KB