d29db4ecd9c753096af4cb6f0899b6c5fb60deaad1f2e88a7e5dd55acefb0bd5

General

Target

d29db4ecd9c753096af4cb6f0899b6c5fb60deaad1f2e88a7e5dd55acefb0bd5
Size

118KB
MD5

61ae90314d5d739da83646640b536790
SHA1

3b72af568691f2d07e4b53e164f8aeb8e891d6e7
SHA256

d29db4ecd9c753096af4cb6f0899b6c5fb60deaad1f2e88a7e5dd55acefb0bd5
SHA512

467b21d0153bedc800f88c8ac8a23832a743650bfb35e3772de12dce9adebbfcc5f1e3e9d5f9012fe29c02d5b862b6009772e52f281d1a65476e0ac22bd2779b
SSDEEP

1536:+zVs8ZEB4tWoKkn58ewAhv0H+npgauK/GPe4ZglGmMFLgYy3b6Ra1F6CjDW1evRR:+zTRSQgfPesghYgFbT1TH2elADY

Score

N/A

Malware Config

Signatures

Files

d29db4ecd9c753096af4cb6f0899b6c5fb60deaad1f2e88a7e5dd55acefb0bd5
.exe windows x86

f3d9ca7d3d06397253d8593bb35d1eab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CancelIo
DeleteFileA
WriteConsoleW
CopyFileA
HeapDestroy
WriteConsoleW
lstrcpyA
GetStartupInfoA
GetStdHandle
VirtualQueryEx
SetEvent
GetModuleHandleA
GetProcessHeap
GetFileAttributesW
lstrlenW
VirtualProtect
GetCommandLineA
GetDriveTypeW
GetPrivateProfileSectionW
WriteConsoleW
Sleep

mmcndmgr

DllCanUnloadNow
DllRegisterServer
DllGetClassObject
DllRegisterServer

cryptui

CryptUIStartCertMgr
WizardFree
LocalEnroll
DllRegisterServer
LocalEnrollNoDS
CryptUIWizDigitalSign
CryptUIWizBuildCTL
CryptUIDlgViewContext
LocalEnroll
WizardFree
CryptUIWizImport
DllUnregisterServer
CryptUIWizExport

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f3d9ca7d3d06397253d8593bb35d1eab

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 111KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 111KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B