32547db2b8d5005e8410fa15d2cf5067dcd9351b3d3f2061d0bad4bd2758ac21

General

Target

32547db2b8d5005e8410fa15d2cf5067dcd9351b3d3f2061d0bad4bd2758ac21
Size

67KB
MD5

57ac7ea6f0753157d3dae52c2a29e346
SHA1

70ae18a7f98d6745a32e7299bfc8d7c2726cf8c4
SHA256

32547db2b8d5005e8410fa15d2cf5067dcd9351b3d3f2061d0bad4bd2758ac21
SHA512

c03b85730c1cd6378357b87c059e39027688b9a521b64ec7c23557079dcd665da6224b9e2937c35c1b288581b1c3a45fab0415806be5ebd26e42abfdfc7b509c
SSDEEP

1536:ehysiXIZDjPmOuOC4LC8D7nR6ZPGdH1z0VI9bpEo5M:eQsOkxuL4mqrAPGdHtkWj

Score

N/A

Malware Config

Signatures

Files

32547db2b8d5005e8410fa15d2cf5067dcd9351b3d3f2061d0bad4bd2758ac21
.exe windows x86

5e5e52c5bca8d8f9a74e709de0f9cf6e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapDestroy
GetProcessHeap
lstrcpyA
Sleep
GetFileAttributesW
GetCommandLineA
GetStdHandle
lstrlenW
WriteConsoleW
GetStartupInfoA
GetPrivateProfileSectionW
SetEvent
CopyFileA
ResumeThread
VirtualQueryEx
GetModuleHandleA
VirtualProtect
DeleteFileA
GetDriveTypeW
WriteConsoleW
WriteConsoleW

mmcndmgr

DllRegisterServer
DllGetClassObject
DllRegisterServer
DllCanUnloadNow

cryptui

CryptUIWizImport
CryptUIWizExport
DllRegisterServer
CryptUIWizBuildCTL
LocalEnrollNoDS
CryptUIDlgViewContext
CryptUIStartCertMgr
LocalEnroll
LocalEnroll
WizardFree
WizardFree
CryptUIWizDigitalSign
DllUnregisterServer

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.expimp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e5e52c5bca8d8f9a74e709de0f9cf6e

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 60KB - Virtual size: 72KB

.rdata Size: 512B - Virtual size: 257B

.expimp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 60KB - Virtual size: 72KB

.rdata
Size: 512B - Virtual size: 257B

.expimp
Size: 512B - Virtual size: 80B