f36a532b5285c5125044e91ae908f52fa1ed0c6c4aa9024a94fa74b97622f315

General

Target

f36a532b5285c5125044e91ae908f52fa1ed0c6c4aa9024a94fa74b97622f315
Size

394KB
MD5

65295676930d4de27db61c38ef44de40
SHA1

c15fe8f0617989702a24311784b926b143e8dd73
SHA256

f36a532b5285c5125044e91ae908f52fa1ed0c6c4aa9024a94fa74b97622f315
SHA512

eb6160cb2e6a3b0f024dbb552b1dc6e9c4bd953e86048727f8e59dbc1061f518848da47204d34527372c9a95f6d1e02f60503da147eff604c130709eb4778715
SSDEEP

12288:OGB7Q+Ka53uteOWdFTyJgDdl69UdTrI5:fQMgezdZySdl692rI5

Score

N/A

Malware Config

Signatures

Files

f36a532b5285c5125044e91ae908f52fa1ed0c6c4aa9024a94fa74b97622f315
.exe windows x86

a059e138f272477a82cdd7371bc13ef2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapDestroy
WriteConsoleW
GetDriveTypeW
GetCommandLineA
ResumeThread
GetStartupInfoA
SetEvent
GetModuleHandleA
lstrlenW
WriteConsoleW
GetProcessHeap
Sleep
DeleteFileA
WriteConsoleW
CopyFileA
GetPrivateProfileSectionW
GetFileAttributesW
VirtualProtect
lstrcpyA
GetStdHandle
VirtualQueryEx

mmcndmgr

DllCanUnloadNow
DllRegisterServer
DllGetClassObject
DllRegisterServer

cryptui

WizardFree
CryptUIWizImport
CryptUIWizDigitalSign
WizardFree
CryptUIStartCertMgr
CryptUIWizExport
LocalEnroll
CryptUIDlgViewContext
DllRegisterServer
LocalEnrollNoDS
CryptUIWizBuildCTL
DllUnregisterServer
LocalEnroll

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 387KB - Virtual size: 888KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a059e138f272477a82cdd7371bc13ef2

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 387KB - Virtual size: 888KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 387KB - Virtual size: 888KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B