0d250baa78c346c7f79b201538a7ad9212cf7dd6654a51fa17ea2cd37df66175

Sharing

Copy URL

Twitter E-mail

General

Target

0d250baa78c346c7f79b201538a7ad9212cf7dd6654a51fa17ea2cd37df66175
Size

101KB
MD5

826bc0eae461a6c6390ba04536f43585
SHA1

6cfc1da4b99f7f8931a96b1a36d3c40f03e06ffa
SHA256

0d250baa78c346c7f79b201538a7ad9212cf7dd6654a51fa17ea2cd37df66175
SHA512

ffb7d7d90874b68f14d94c4d1841f1b629f65871ca2438456e728ca802cb842f7461f532992cfa9dd7a814113bfcb3927cd3de28cbbb8645846dd715baf30aa3
SSDEEP

1536:YBmNmEiEspSCwOD1udzvq9rrRuitE8RQN7OqHq+tYrLIz91CcgD2fqOdML:CmOudrq9rrRu+vRvqK+tYLW91mDgqy

Score

N/A

Malware Config

Signatures

Files

0d250baa78c346c7f79b201538a7ad9212cf7dd6654a51fa17ea2cd37df66175
.exe windows x86

eb6ee81255157387a0ecf63739bfbdba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowLongW
LoadIconW
SetFocus
wsprintfW
GetWindowLongW
LoadCursorW
EndDialog
LoadBitmapW
SetCursor
RegisterClipboardFormatW
GetDlgItemTextA
DialogBoxParamW
ReleaseDC
SetWindowTextW
SetDlgItemTextW
EnableWindow
SendDlgItemMessageW
GetDlgItem
SystemParametersInfoW
GetDC
WinHelpW
MessageBoxW
InsertMenuItemW
LoadStringW
LoadImageW
GetParent
PostMessageW
SendMessageW

kernel32

RemoveDirectoryA
GetComputerNameW
GetModuleHandleA
FileTimeToLocalFileTime
GetSystemWindowsDirectoryW
GetStartupInfoA
GetDateFormatW
FormatMessageW
QueryPerformanceCounter
GetModuleFileNameW
FileTimeToSystemTime
InitializeCriticalSection
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
GlobalAlloc
CreateFileW
GetACP
DeleteCriticalSection
InterlockedDecrement
lstrcpyW
SetLastError
CloseHandle
GetSystemDefaultLangID
GlobalLock
lstrcmpiW
GetTickCount
InterlockedIncrement
LocalFree
GetCurrentProcess
OutputDebugStringA
GlobalUnlock
LocalReAlloc
IsBadReadPtr
OutputDebugStringW
lstrlenW
GlobalFree
LoadLibraryW
WideCharToMultiByte
GetLastError

comctl32

PropertySheetW
CreatePropertySheetPageW

msvcrt

_except_handler3
__RTDynamicCast
wcstoul
_wcsicmp
__dllonexit
malloc
?terminate@@YAXXZ
mbstowcs
memmove
_adjust_fdiv
_purecall
wcschr
wcsrchr
wcscmp
??2@YAPAXI@Z
wcsstr
_initterm
wcslen
wcscat
free
vswprintf
_onexit
??3@YAXPAX@Z
??1type_info@@UAE@XZ
_wcsupr
wcscpy

certcli

CAFindCertTypeByName
CAEnumNextCertType
CASetCertTypeProperty
CAGetCertTypePropertyEx
CARemoveCACertificateType
CAFreeCAProperty
CAEnumCertTypesForCA
CACertTypeSetSecurity
CASetCertTypeExtension
CACertTypeGetSecurity
CAGetCertTypeFlags
CACloseCertType
CAAddCACertificateType
CASetCertTypeFlags
CAFreeCertTypeExtensions
CACloseCA
CAUpdateCertType
CAGetCertTypeExtensions
CAFreeCertTypeProperty
CASetCertTypeKeySpec
CAUpdateCA
CACreateCertType
CAGetCAProperty
CAGetCertTypeKeySpec
CAFindByName
CAEnumCertTypes
CAGetCertTypeProperty

advapi32

RegOpenKeyExW
RegSetValueExW
RegDeleteKeyW
RegEnumKeyExW
RegCreateKeyExW
RegCloseKey
RegQueryValueExW
RegDeleteValueW

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb6ee81255157387a0ecf63739bfbdba

Headers

File Characteristics

Imports

user32

kernel32

comctl32

msvcrt

certcli

advapi32

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 77KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 77KB

.rsrc
Size: 23KB - Virtual size: 22KB