028cba5047a6a3da70197920cd3b4e5dea9284a7e9cf5ef05d9ec70849054053

Sharing

Copy URL

Twitter E-mail

General

Target

028cba5047a6a3da70197920cd3b4e5dea9284a7e9cf5ef05d9ec70849054053
Size

104KB
MD5

43a99dc2967b61e5727d32a5399b0e78
SHA1

e37986dd6b9f128333a4f0e9047fd2f28cd81740
SHA256

028cba5047a6a3da70197920cd3b4e5dea9284a7e9cf5ef05d9ec70849054053
SHA512

a157c1f7f40ab40b07df4fa22054566999fe781414fcf0e5dab0744015632e6a00264092b98b3acc98476af36196845e227afb11659ff3337dd11cb6d16a8722
SSDEEP

3072:a4fyIBSwp7YBnjwd8rMrW+rntdvkGLDE:aDIBSwejOSV8ntddL

Score

N/A

Malware Config

Signatures

Files

028cba5047a6a3da70197920cd3b4e5dea9284a7e9cf5ef05d9ec70849054053
.exe windows x86

30e5568873cb9f3851f021dc0625fe5c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadBitmapW
MessageBoxW
SetWindowTextW
EndDialog
ReleaseDC
LoadCursorW
SetDlgItemTextW
SendDlgItemMessageW
GetParent
SetFocus
InsertMenuItemW
WinHelpW
SetCursor
GetDC
LoadImageW
RegisterClipboardFormatW
wsprintfW
SystemParametersInfoW
PostMessageW
DialogBoxParamW
SendMessageW
GetDlgItemTextA
GetWindowLongW
GetDlgItem
EnableWindow
LoadIconW
LoadStringW
SetWindowLongW

kernel32

GlobalAlloc
lstrlenW
InterlockedIncrement
OutputDebugStringW
GetModuleFileNameW
InitializeCriticalSection
GetLastError
GetDateFormatW
GetSystemTimeAsFileTime
LocalReAlloc
GetCPInfo
LoadLibraryW
lstrcpyW
FormatMessageW
GetCurrentProcess
GetEnvironmentStringsW
OutputDebugStringA
SetLastError
GlobalLock
GetSystemWindowsDirectoryW
GetSystemDefaultLangID
CreateFileW
GlobalFree
GetComputerNameW
LocalFree
GetTickCount
FileTimeToLocalFileTime
IsBadReadPtr
GetModuleHandleA
GetStartupInfoA
QueryPerformanceCounter
SetUnhandledExceptionFilter
FileTimeToSystemTime
lstrcmpiW
RemoveDirectoryA
DeleteCriticalSection
GetProcAddress
CloseHandle
GlobalUnlock
WideCharToMultiByte
InterlockedDecrement

advapi32

RegSetValueExW
RegDeleteKeyW
RegEnumKeyExW
RegCloseKey
RegDeleteValueW
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW

msvcrt

mbstowcs
__RTDynamicCast
wcscmp
wcscpy
wcsrchr
malloc
_except_handler3
_wcsupr
wcschr
free
__dllonexit
wcsstr
??1type_info@@UAE@XZ
_adjust_fdiv
??3@YAXPAX@Z
wcscat
??2@YAPAXI@Z
_initterm
wcslen
_wcsicmp
wcstoul
_onexit
vswprintf
?terminate@@YAXXZ
memmove

certcli

CACertTypeGetSecurity
CACloseCA
CACreateCertType
CAGetCertTypeProperty
CAUpdateCertType
CAGetCertTypeFlags
CAEnumCertTypes
CARemoveCACertificateType
CACertTypeSetSecurity
CAFindCertTypeByName
CAFreeCertTypeProperty
CACloseCertType
CASetCertTypeKeySpec
CAUpdateCA
CAAddCACertificateType
CAGetCertTypeKeySpec
CASetCertTypeExtension
CAGetCertTypePropertyEx
CAGetCAProperty
CAFreeCertTypeExtensions
CAEnumCertTypesForCA
CAFindByName
CASetCertTypeFlags
CAFreeCAProperty
CASetCertTypeProperty
CAGetCertTypeExtensions
CAEnumNextCertType

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

30e5568873cb9f3851f021dc0625fe5c

Headers

File Characteristics

Imports

user32

kernel32

advapi32

msvcrt

certcli

comctl32

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 107KB

.rsrc Size: 26KB - Virtual size: 25KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 107KB

.rsrc
Size: 26KB - Virtual size: 25KB