5366eca358fb3c2135259c9c836b3e4679544168c73a768628f89ac3b8933fa8

General

Target

5366eca358fb3c2135259c9c836b3e4679544168c73a768628f89ac3b8933fa8
Size

294KB
MD5

622534ca63719e3d496e0adfaa1a18c0
SHA1

98fc57ffcf1a2f3c63ed1094c591297d65c711f1
SHA256

5366eca358fb3c2135259c9c836b3e4679544168c73a768628f89ac3b8933fa8
SHA512

aa104aa5a2cd951ef69519f8ecd9aa383669bbe876609305e93f670c3d46a112176f776ae22567c9c31d34e5a9e7391d7f94b73ee8cdfbc06ea8b355f40b5b7f
SSDEEP

6144:Squ2dMBPkNCKEniXFVNGSaImRnv1BxwbvmsRKGJeKefjTzwFatSONG6UMh:S+dEsnlVNGSaRVKbOsRRMzTzwFatZUMh

Score

N/A

Malware Config

Signatures

Files

5366eca358fb3c2135259c9c836b3e4679544168c73a768628f89ac3b8933fa8
.exe windows x86

293ff4c3fc4226e8c21a84d6dbac771b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPriorityClass
CreatePipe
CopyFileA
DisconnectNamedPipe
ResumeThread
WriteConsoleW
VirtualProtect
GetFileAttributesW
GetCommandLineA
GetModuleHandleA
lstrcpyA
GetProcessHeap
WriteConsoleW
DeleteFileA
GetStartupInfoA
WriteConsoleW
SetEvent
GetStdHandle
GetCurrentDirectoryA
lstrlenW
HeapDestroy

mmcndmgr

DllRegisterServer
DllGetClassObject
DllRegisterServer
DllCanUnloadNow

cryptui

CryptUIWizBuildCTL
CryptUIWizImport
CryptUIWizExport
CryptUIStartCertMgr
LocalEnroll
CryptUIWizDigitalSign
WizardFree
CryptUIWizBuildCTL
DllRegisterServer
CryptUIDlgViewContext
WizardFree
LocalEnroll
DllUnregisterServer

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 285KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 195B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

293ff4c3fc4226e8c21a84d6dbac771b

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 3KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 3KB

.rdata Size: 512B - Virtual size: 264B

.rsrc Size: 285KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 177B

.impdata Size: 512B - Virtual size: 195B

.text
Size: 3KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 3KB

.rdata
Size: 512B - Virtual size: 264B

.rsrc
Size: 285KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 177B

.impdata
Size: 512B - Virtual size: 195B