ebed0344353dbb340c4543a3b6584436749b96e3316e3e87823f85039d980f10

General

Target

ebed0344353dbb340c4543a3b6584436749b96e3316e3e87823f85039d980f10
Size

395KB
MD5

6de9ce97d69200d14427f225ad0b3dd5
SHA1

c6b180544e3af73885caf00b16cdbab529317446
SHA256

ebed0344353dbb340c4543a3b6584436749b96e3316e3e87823f85039d980f10
SHA512

a4b551f1ba2d41c73bfebcf7c4813bfe6903e00abd6451a87abcdc36b284023e1385381c60643aa0c0c9841008d4e7478f7e9cf2dfced3d711ab5470a6000d49
SSDEEP

12288:pZ94NNGcMHHvyDIsVS62Hlq97TgQOVrh7z6dGOe:pZeNCPRs062F27Irh7z6dre

Score

N/A

Malware Config

Signatures

Files

ebed0344353dbb340c4543a3b6584436749b96e3316e3e87823f85039d980f10
.exe windows x86

5b033bce9c6c55935bffd3902310ff78

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

cryptui

CryptUIWizDigitalSign
CryptUIDlgSelectCertificateFromStore
CryptUIDlgViewContext
CryptUIWizFreeDigitalSignContext

kernel32

SetTapeParameters
CreateSemaphoreA
GetLogicalDriveStringsA
CloseHandle
WideCharToMultiByte
HeapFree
GetSystemTimeAsFileTime
GetModuleHandleA
GetCommandLineA
GetVersionExA
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
GetCPInfo
RtlUnwind
RaiseException
LCMapStringA
MultiByteToWideChar
GetLastError
LCMapStringW
HeapAlloc
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
GetTimeFormatA
GetDateFormatA
VirtualProtect
GetSystemInfo
VirtualQuery
GetTimeZoneInformation
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
GetStringTypeA
GetStringTypeW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
SetUnhandledExceptionFilter
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
HeapSize
IsBadReadPtr
IsBadCodePtr
SetFilePointer
InterlockedExchange
LoadLibraryA
GetACP
GetOEMCP
GetLocaleInfoW
SetStdHandle
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA

Sections

.text
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 125KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b033bce9c6c55935bffd3902310ff78

Headers

File Characteristics

Imports

cryptui

kernel32

Sections

.text Size: 78KB - Virtual size: 77KB

.rdata Size: 145KB - Virtual size: 144KB

.data Size: 125KB - Virtual size: 2.8MB

.rsrc Size: 45KB - Virtual size: 45KB

.text
Size: 78KB - Virtual size: 77KB

.rdata
Size: 145KB - Virtual size: 144KB

.data
Size: 125KB - Virtual size: 2.8MB

.rsrc
Size: 45KB - Virtual size: 45KB