730fd422f74ca8c1d11011821bf8513559f9be1be753e5886b62d2db40267600

Sharing

Copy URL Twitter E-mail

General

Target

730fd422f74ca8c1d11011821bf8513559f9be1be753e5886b62d2db40267600
Size

100KB
MD5

7c0f65d132ab907917af4700b6aef164
SHA1

6b4485f34629b7fed42a149d61de73deac5b99e0
SHA256

730fd422f74ca8c1d11011821bf8513559f9be1be753e5886b62d2db40267600
SHA512

02e5b1ebee2bd37cbf0c3f6587d86fe70ce64c258df6441499fc901f510f49eb6360bb3def1fda32fdaee34f43023060af253ff8801c4fc21525e0c4b44366b8
SSDEEP

1536:zyFUqeeI6NKFNdA8T04SaX3w2XUCIY5sL91qcJ7wgkKXfCdZunvB:eUqLwui04i2XUsy9kO7wTKXfCXuvB

Score

N/A

Malware Config

Signatures

Files

730fd422f74ca8c1d11011821bf8513559f9be1be753e5886b62d2db40267600
.exe windows x86

0d32bd8000571b12b21c7d16f2649e2e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItem
ReleaseDC
LoadCursorW
RegisterClipboardFormatW
GetDlgItemTextA
LoadIconW
LoadStringW
EndDialog
InsertMenuItemW
LoadImageW
WinHelpW
wsprintfW
PostMessageW
SetFocus
GetWindowLongW
SetWindowLongW
SetDlgItemTextW
SendMessageW
SetWindowTextW
SystemParametersInfoW
GetDC
GetParent
MessageBoxW
DialogBoxParamW
SendDlgItemMessageW
LoadBitmapW
SetCursor
EnableWindow

certcli

CAGetCertTypeExtensions
CACloseCertType
CAFreeCertTypeExtensions
CAFindByName
CAGetCertTypeKeySpec
CAUpdateCA
CARemoveCACertificateType
CAEnumNextCertType
CASetCertTypeFlags
CAAddCACertificateType
CAGetCertTypeFlags
CAFindCertTypeByName
CACloseCA
CAGetCertTypeProperty
CACertTypeGetSecurity
CAGetCAProperty
CAEnumCertTypes
CASetCertTypeKeySpec
CASetCertTypeExtension
CAGetCertTypePropertyEx
CASetCertTypeProperty
CAUpdateCertType
CACreateCertType
CAFreeCAProperty
CAFreeCertTypeProperty
CAEnumCertTypesForCA
CACertTypeSetSecurity

kernel32

lstrlenW
WideCharToMultiByte
CreateFileW
FileTimeToSystemTime
GetDateFormatW
GetModuleHandleA
GetLastError
LocalFree
OutputDebugStringW
GetACP
GlobalFree
GetSystemDefaultLangID
GetCurrentProcess
GetComputerNameW
GlobalUnlock
LoadLibraryW
InterlockedIncrement
GlobalAlloc
lstrcpyW
lstrcmpiW
CloseHandle
GetSystemWindowsDirectoryW
FileTimeToLocalFileTime
GetModuleFileNameW
InitializeCriticalSection
GlobalLock
GetStartupInfoA
SetUnhandledExceptionFilter
RemoveDirectoryA
IsBadReadPtr
QueryPerformanceCounter
GetSystemTimeAsFileTime
OutputDebugStringA
GetEnvironmentStringsW
DeleteCriticalSection
InterlockedDecrement
LocalReAlloc
FormatMessageW
GetTickCount
SetLastError

msvcrt

vswprintf
wcslen
free
wcscat
_onexit
wcscpy
__dllonexit
malloc
memmove
__RTDynamicCast
_wcsicmp
_except_handler3
wcschr
_initterm
?terminate@@YAXXZ
wcsrchr
??1type_info@@UAE@XZ
mbstowcs
wcstoul
wcscmp
??2@YAPAXI@Z
_wcsupr
_purecall
_adjust_fdiv
??3@YAXPAX@Z
wcsstr

advapi32

RegOpenKeyExW
RegEnumKeyExW
RegCreateKeyExW
RegCloseKey
RegQueryValueExW
RegDeleteValueW
RegSetValueExW
RegDeleteKeyW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d32bd8000571b12b21c7d16f2649e2e

Headers

File Characteristics

Imports

user32

certcli

kernel32

msvcrt

advapi32

comctl32

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 70KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 70KB

.rsrc
Size: 23KB - Virtual size: 23KB