292ca24626633840dc32751ea81b347662bfb70ad7a47d6edf00775825aafdc3

Sharing

Copy URL Twitter E-mail

General

Target

292ca24626633840dc32751ea81b347662bfb70ad7a47d6edf00775825aafdc3
Size

101KB
MD5

960b8597dd04bba04f4a6d6ecb7ee741
SHA1

d32469a6ce333650013609a4bc2e155da6852455
SHA256

292ca24626633840dc32751ea81b347662bfb70ad7a47d6edf00775825aafdc3
SHA512

201a29c65da894e9aafa5e8f5bf52f4ba483933845e1e69f12c9cf12cf368ca7a64d7d8292be98bd9ff406c4fd1c3f9476e583dd80860816a29295bf90a34ea2
SSDEEP

1536:TxYCzlwXjulrIJZ0BE+Gvy9+CFz5z4mGCgCVSFZrWSH33AbqHvaEl55:TxwX6lk03oCT4mGC7VXy33Ab0aE

Score

N/A

Malware Config

Signatures

Files

292ca24626633840dc32751ea81b347662bfb70ad7a47d6edf00775825aafdc3
.exe windows x86

a07479477fc30697deee124bc5d7397a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CASetCertTypeKeySpec
CACertTypeGetSecurity
CAFreeCertTypeExtensions
CAFindByName
CAGetCertTypeFlags
CAGetCertTypeKeySpec
CASetCertTypeProperty
CAEnumCertTypes
CAFreeCAProperty
CACreateCertType
CAAddCACertificateType
CACertTypeSetSecurity
CAUpdateCA
CAGetCAProperty
CASetCertTypeFlags
CAGetCertTypeExtensions
CAUpdateCertType
CAEnumNextCertType
CAFindCertTypeByName
CAFreeCertTypeProperty
CAGetCertTypeProperty
CARemoveCACertificateType
CAGetCertTypePropertyEx
CACloseCertType
CACloseCA
CAEnumCertTypesForCA
CASetCertTypeExtension

kernel32

GetModuleHandleA
SetLastError
FileTimeToSystemTime
GetSystemWindowsDirectoryW
GetDateFormatW
GlobalFree
InterlockedDecrement
OutputDebugStringW
DeleteCriticalSection
GetCurrentProcess
FileTimeToLocalFileTime
InterlockedIncrement
OutputDebugStringA
InitializeCriticalSection
FormatMessageW
IsBadReadPtr
GlobalLock
GetTickCount
WideCharToMultiByte
GetEnvironmentStringsW
lstrcpyW
GetComputerNameW
GetCPInfo
QueryPerformanceCounter
GlobalAlloc
lstrlenW
GetLastError
lstrcmpiW
GetSystemDefaultLangID
GetStartupInfoA
CloseHandle
LoadLibraryW
LocalReAlloc
SetUnhandledExceptionFilter
GetModuleFileNameW
RemoveDirectoryA
LocalFree
GetSystemTimeAsFileTime
GlobalUnlock
CreateFileW
GetProcAddress

advapi32

RegDeleteValueW
RegSetValueExW
RegOpenKeyExW
RegCloseKey
RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW
RegCreateKeyExW

user32

PostMessageW
MessageBoxW
wsprintfW
DialogBoxParamW
LoadBitmapW
SetFocus
LoadImageW
GetParent
SetWindowLongW
EnableWindow
SetWindowTextW
InsertMenuItemW
ReleaseDC
SetCursor
LoadIconW
WinHelpW
GetDC
SetDlgItemTextW
EndDialog
LoadStringW
GetDlgItem
SystemParametersInfoW
LoadCursorW
RegisterClipboardFormatW
GetDlgItemTextA
SendMessageW
GetWindowLongW
SendDlgItemMessageW

msvcrt

wcstoul
_except_handler3
wcslen
vswprintf
_adjust_fdiv
wcschr
wcsstr
_onexit
mbstowcs
__dllonexit
_wcsupr
_wcsicmp
_initterm
wcscpy
malloc
?terminate@@YAXXZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
memmove
wcscat
??3@YAXPAX@Z
wcscmp
__RTDynamicCast
wcsrchr
free

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a07479477fc30697deee124bc5d7397a

Headers

File Characteristics

Imports

certcli

kernel32

advapi32

user32

msvcrt

comctl32

Sections

.text Size: 46KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 94KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 46KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 94KB

.rsrc
Size: 23KB - Virtual size: 23KB