ba413726966cf69913255984a75b3ebf80cfa6a553d98d511421fcc9e7ffc4a3

General

Target

ba413726966cf69913255984a75b3ebf80cfa6a553d98d511421fcc9e7ffc4a3
Size

291KB
MD5

6d3051125ab1db32797e4d68617bf8e0
SHA1

bbc58ae8887c0ca01ac138a3dd6119a3d8697c58
SHA256

ba413726966cf69913255984a75b3ebf80cfa6a553d98d511421fcc9e7ffc4a3
SHA512

6bd0c47051fb656db69dfdbb0e94451c1ec63b00d68c5a2c99a2dae8dde3ff982a89a5b60f30f991858a227aabde037824875b2446709ca7dfa7fe01cfb2cc50
SSDEEP

6144:ar3oO1ybQ+qyiKc6ZlohXkTwDOFuxUaeCkwt07Xfjrelwi:CzG+6ToIySvvwiXLrID

Score

N/A

Malware Config

Signatures

Files

ba413726966cf69913255984a75b3ebf80cfa6a553d98d511421fcc9e7ffc4a3
.exe windows x86

9836a3ff5355992be909fa9379fd5ce3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
CancelIo
SetEvent
lstrcpyA
GetCommandLineA
WriteConsoleW
GetPrivateProfileSectionW
GetStdHandle
lstrlenW
GetProcessHeap
GetDriveTypeW
DeleteFileA
GetFileAttributesA
HeapDestroy
CopyFileA
GetModuleHandleA
WriteConsoleW
WriteConsoleW
VirtualQueryEx
GetStartupInfoA
Sleep

mmcndmgr

DllRegisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

cryptui

LocalEnroll
CryptUIWizDigitalSign
WizardFree
CryptUIWizExport
LocalEnroll
DllRegisterServer
DllUnregisterServer
WizardFree
CryptUIDlgViewContext
CryptUIStartCertMgr
CryptUIWizBuildCTL
LocalEnrollNoDS
CryptUIWizImport

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9836a3ff5355992be909fa9379fd5ce3

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 284KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 96B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 284KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 96B