f8ab626ae9cbb86a1e9f9a1974a6b4034b5b528e0631895cde8ccb1a0fd49cf0

General

Target

f8ab626ae9cbb86a1e9f9a1974a6b4034b5b528e0631895cde8ccb1a0fd49cf0
Size

294KB
MD5

65badbe242878265bb6cfea347bda1c0
SHA1

0501845531ded9ee446cc33630546295db7eb88d
SHA256

f8ab626ae9cbb86a1e9f9a1974a6b4034b5b528e0631895cde8ccb1a0fd49cf0
SHA512

254c6517e71339979617658a83c72d710c7ed73fd82f1758e34442fd17e918ca9a7496f5846da8a0935d24ddba7eb5054cdbbb2c48cb65e138c9891d4b268c4b
SSDEEP

6144:ds2dMBPkWM7Un11uZuJ2kTDMo/hfP8y5fvPWdvMrpWUXFsQsY8MNgY3Fg8AZXC0y:dHdEsx7Un11PPfP8yspkrVsdGgUgxZCl

Score

N/A

Malware Config

Signatures

Files

f8ab626ae9cbb86a1e9f9a1974a6b4034b5b528e0631895cde8ccb1a0fd49cf0
.exe windows x86

0008fcf059c334f6487f5f90b126e798

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

DisconnectNamedPipe
CreatePipe
lstrcpyA
GetCurrentDirectoryA
GetStartupInfoA
WriteConsoleW
GetStdHandle
HeapDestroy
GetModuleHandleA
ResumeThread
WriteConsoleW
GetFileAttributesW
DeleteFileA
SetEvent
lstrlenW
GetProcessHeap
GetCommandLineA
WriteConsoleW
CopyFileA
GetPriorityClass
VirtualProtect

mmcndmgr

DllGetClassObject
DllRegisterServer
DllRegisterServer
DllCanUnloadNow

cryptui

CryptUIStartCertMgr
CryptUIWizBuildCTL
LocalEnroll
DllUnregisterServer
WizardFree
CryptUIWizExport
LocalEnroll
CryptUIWizBuildCTL
CryptUIWizImport
DllRegisterServer
CryptUIWizDigitalSign
WizardFree
CryptUIDlgViewContext

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 285KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 195B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0008fcf059c334f6487f5f90b126e798

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 264B

.rsrc Size: 285KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 177B

.impdata Size: 512B - Virtual size: 195B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 264B

.rsrc
Size: 285KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 177B

.impdata
Size: 512B - Virtual size: 195B