dd717d29f009f4e6401e3a3c64f74be35de8160ab274cd5c6cccf543246381db

General

Target

dd717d29f009f4e6401e3a3c64f74be35de8160ab274cd5c6cccf543246381db
Size

64KB
MD5

69bfd5c71baf8022769ccb634163f7c0
SHA1

bee1a45298dfce1fa740590a55185533e5499e65
SHA256

dd717d29f009f4e6401e3a3c64f74be35de8160ab274cd5c6cccf543246381db
SHA512

fafb40944f1634405431864a24e57dc3721e2b0ca544f28e1565d049c16fce7ced92e8eeab230a72c8c52d04d9d133259c37538159163b43d0addc4bac03b9f3
SSDEEP

1536:HLjgD3hbgEGHuitm75a7/TsyDuVJOSNMTBabFn:HvgdUHuiZTHDAdWTBax

Score

N/A

Malware Config

Signatures

Files

dd717d29f009f4e6401e3a3c64f74be35de8160ab274cd5c6cccf543246381db
.exe windows x86

000638d19c47756cf01ab7379d1afd24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualQueryEx
GetPrivateProfileSectionW
GetStdHandle
WriteConsoleW
Sleep
SetEvent
WriteConsoleW
lstrcpyA
DeleteFileA
CopyFileA
GetFileAttributesW
GetModuleHandleA
ResumeThread
WriteConsoleW
GetDriveTypeW
lstrlenW
HeapDestroy
GetCommandLineA
VirtualProtect
GetProcessHeap
GetStartupInfoA

mmcndmgr

DllRegisterServer
DllCanUnloadNow
DllGetClassObject
DllRegisterServer

cryptui

CryptUIWizBuildCTL
LocalEnrollNoDS
CryptUIStartCertMgr
DllUnregisterServer
DllRegisterServer
WizardFree
LocalEnroll
CryptUIDlgViewContext
CryptUIWizDigitalSign
WizardFree
LocalEnroll
CryptUIWizExport
CryptUIWizImport

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.expimp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

000638d19c47756cf01ab7379d1afd24

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 57KB - Virtual size: 72KB

.rdata Size: 512B - Virtual size: 257B

.expimp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 57KB - Virtual size: 72KB

.rdata
Size: 512B - Virtual size: 257B

.expimp
Size: 512B - Virtual size: 80B