68c3e4542af30a2918e4e445c2821a324f45529546b969ca516a2048b950d0dd

General

Target

68c3e4542af30a2918e4e445c2821a324f45529546b969ca516a2048b950d0dd
Size

117KB
MD5

5d3569341e31ad95afb3f26b429e13c0
SHA1

506c8b14ab083366e13b55c8ebc61e1cfc2faad5
SHA256

68c3e4542af30a2918e4e445c2821a324f45529546b969ca516a2048b950d0dd
SHA512

d00d2c267711042ac8247e8da692ed8ee9db4ef5c0370734014754806a4813e025af871b95c1ad734903897a112841e7ff0531b0b80ad278251ed8f22895cb26
SSDEEP

3072:AbW6n6SYKsC2uBixXNQfLkROwedrBFkPFxa:AbLhYKsVuimoOw467

Score

N/A

Malware Config

Signatures

Files

68c3e4542af30a2918e4e445c2821a324f45529546b969ca516a2048b950d0dd
.exe windows x86

44444e94171ee035956c98afbe4dec31

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStdHandle
WriteConsoleW
VirtualProtect
VirtualQueryEx
CopyFileA
GetModuleHandleA
DeleteFileA
GetStartupInfoA
HeapDestroy
WriteConsoleW
WriteConsoleW
GetPrivateProfileSectionW
GetFileAttributesW
lstrlenW
GetCommandLineA
lstrcpyA
CancelIo
GetProcessHeap
SetEvent
GetDriveTypeW
Sleep

mmcndmgr

DllRegisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

cryptui

DllUnregisterServer
CryptUIWizExport
WizardFree
DllRegisterServer
LocalEnroll
CryptUIWizImport
CryptUIDlgViewContext
LocalEnroll
CryptUIWizBuildCTL
LocalEnrollNoDS
CryptUIWizDigitalSign
CryptUIStartCertMgr
WizardFree

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44444e94171ee035956c98afbe4dec31

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B