8b5305e965e7153762f11b0ea9e4b3ec15b677b6cc84b4a7bf27a3267faa993c

Sharing

Copy URL Twitter E-mail

General

Target

8b5305e965e7153762f11b0ea9e4b3ec15b677b6cc84b4a7bf27a3267faa993c
Size

100KB
MD5

4fc11db182201586e67269e44a204378
SHA1

6c5edec4642c85ffb91a57940213db1df7d51af1
SHA256

8b5305e965e7153762f11b0ea9e4b3ec15b677b6cc84b4a7bf27a3267faa993c
SHA512

1d16134fb47b2fd1a88ae8ae087cdcc41e07910cc8193fba298d85818424cd69a737a69678cb3941e11d56a545dd456ceb93d08b28783cc0cb65001d954dc480
SSDEEP

3072:nXg7fpCG3R0hvw4d2NYA2u0BfaDg65IhJ7:nXYl+vwQQJ0xUgh77

Score

N/A

Malware Config

Signatures

Files

8b5305e965e7153762f11b0ea9e4b3ec15b677b6cc84b4a7bf27a3267faa993c
.exe windows x86

de96c5ad6dd7d54d2d09ddfc6cb0c348

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAUpdateCertType
CASetCertTypeFlags
CACertTypeSetSecurity
CAFreeCertTypeExtensions
CAFindByName
CAUpdateCA
CAGetCertTypeExtensions
CAAddCACertificateType
CAEnumCertTypesForCA
CAFreeCertTypeProperty
CAGetCertTypeProperty
CAEnumCertTypes
CARemoveCACertificateType
CASetCertTypeKeySpec
CAGetCertTypeFlags
CASetCertTypeProperty
CAGetCAProperty
CAEnumNextCertType
CASetCertTypeExtension
CACloseCertType
CACreateCertType
CAGetCertTypeKeySpec
CACertTypeGetSecurity
CAFreeCAProperty
CACloseCA
CAFindCertTypeByName
CAGetCertTypePropertyEx

kernel32

SetLastError
FileTimeToSystemTime
LoadLibraryW
LocalFree
GlobalLock
WideCharToMultiByte
GetProcAddress
FormatMessageW
IsBadReadPtr
GetSystemDefaultLangID
GetCurrentProcess
GetSystemTimeAsFileTime
InterlockedDecrement
GetModuleFileNameW
QueryPerformanceCounter
LocalReAlloc
FileTimeToLocalFileTime
GetLastError
InitializeCriticalSection
GetModuleHandleA
GetComputerNameW
InterlockedIncrement
GetDateFormatW
OutputDebugStringW
DeleteCriticalSection
lstrlenW
GlobalAlloc
lstrcmpiW
SetUnhandledExceptionFilter
GetStartupInfoA
GlobalUnlock
CreateFileW
CloseHandle
GetCPInfo
GetSystemWindowsDirectoryW
OutputDebugStringA
GlobalFree
RemoveDirectoryA
GetEnvironmentStringsW
GetTickCount
lstrcpyW

msvcrt

vswprintf
?terminate@@YAXXZ
_adjust_fdiv
wcscpy
wcslen
wcscmp
_wcsupr
wcsrchr
memmove
_initterm
wcsstr
wcstoul
wcschr
_except_handler3
__dllonexit
__RTDynamicCast
_onexit
??3@YAXPAX@Z
??1type_info@@UAE@XZ
mbstowcs
free
malloc
??2@YAPAXI@Z
_wcsicmp
wcscat

user32

GetDlgItem
RegisterClipboardFormatW
EndDialog
LoadStringW
SetWindowTextW
EnableWindow
GetDC
PostMessageW
GetDlgItemTextA
LoadIconW
SystemParametersInfoW
SetCursor
SendMessageW
SendDlgItemMessageW
InsertMenuItemW
GetWindowLongW
SetFocus
wsprintfW
GetParent
LoadBitmapW
LoadCursorW
DialogBoxParamW
SetDlgItemTextW
ReleaseDC
LoadImageW
WinHelpW
SetWindowLongW
MessageBoxW

advapi32

RegQueryValueExW
RegDeleteKeyW
RegCloseKey
RegCreateKeyExW
RegDeleteValueW
RegOpenKeyExW
RegSetValueExW
RegEnumKeyExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de96c5ad6dd7d54d2d09ddfc6cb0c348

Headers

File Characteristics

Imports

certcli

kernel32

msvcrt

user32

advapi32

comctl32

Sections

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 78KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 78KB

.rsrc
Size: 24KB - Virtual size: 24KB