550ec76ba1c76a4568f9487c8e36c68852872c9eb5403543e3e6a83d9e61f728

General

Target

550ec76ba1c76a4568f9487c8e36c68852872c9eb5403543e3e6a83d9e61f728
Size

117KB
MD5

40f84359c98ce6ba1b6ccb42a231c700
SHA1

99e03cce0a43efabfffd337da09d930a4f38ff2f
SHA256

550ec76ba1c76a4568f9487c8e36c68852872c9eb5403543e3e6a83d9e61f728
SHA512

c2bfd61da2ce2d48b5e3e02c88e885b10000a6fa747857191998fcee594f3b2f12df5ca9161f99c00903cdedcdc3a2192c1ee6a5f5243bf06658c4d335db1550
SSDEEP

1536:AuL+usNQ8qy4porSwuOts+S3gdVVc30PVH92WoY586oOxXytDOdyjH34GbtDp:AuL+xtSwucYgdqsEWR1Ytidyb4GbtDp

Score

N/A

Malware Config

Signatures

Files

550ec76ba1c76a4568f9487c8e36c68852872c9eb5403543e3e6a83d9e61f728
.exe windows x86

3bdd6800c394ff914b4b8028ae082ffd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetEvent
Sleep
VirtualQueryEx
VirtualProtect
GetModuleHandleA
GetFileAttributesW
HeapDestroy
CopyFileA
CancelIo
GetProcessHeap
GetStdHandle
DeleteFileA
WriteConsoleW
GetPrivateProfileSectionW
GetCommandLineA
WriteConsoleW
GetStartupInfoA
WriteConsoleW
lstrcpyA
GetDriveTypeW
lstrlenW

mmcndmgr

DllCanUnloadNow
DllRegisterServer
DllGetClassObject
DllRegisterServer

cryptui

LocalEnroll
CryptUIWizImport
WizardFree
LocalEnrollNoDS
DllUnregisterServer
WizardFree
CryptUIWizBuildCTL
CryptUIWizExport
CryptUIDlgViewContext
LocalEnroll
CryptUIStartCertMgr
DllRegisterServer
CryptUIWizDigitalSign

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3bdd6800c394ff914b4b8028ae082ffd

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B