6efea7bdde78c577fe5990b525bfcc031ecf721dd4047eacf2528c7ebda0832e

General

Target

6efea7bdde78c577fe5990b525bfcc031ecf721dd4047eacf2528c7ebda0832e
Size

118KB
MD5

69623c2540860bbcf83ec03c64c44d00
SHA1

f5ff9cb4d302c2e57656c7e58c729599b68f92c0
SHA256

6efea7bdde78c577fe5990b525bfcc031ecf721dd4047eacf2528c7ebda0832e
SHA512

25f23cd5efa7917b3711dac4562c1de0f76aaccf79cab655c22c99ec08b362dd57c53d5d047de9993812a952b4b2f3375205dc41820e9c8f8a158b8ec99c2a6a
SSDEEP

3072:Hw3Q/yiHM6le4302lHAS0euHUiNVD60pVB:HaQ/yd9x2ZAS0euHjmM

Score

N/A

Malware Config

Signatures

Files

6efea7bdde78c577fe5990b525bfcc031ecf721dd4047eacf2528c7ebda0832e
.exe windows x86

87e4557979d687387bda19a6fdc5e02f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ResumeThread
GetStartupInfoA
GetDriveTypeW
VirtualProtect
VirtualQueryEx
GetProcessHeap
GetFileAttributesW
Sleep
GetPrivateProfileSectionW
WriteConsoleW
WriteConsoleW
HeapDestroy
GetStdHandle
lstrlenW
DeleteFileA
SetEvent
GetModuleHandleA
CopyFileA
lstrcpyA
GetCommandLineA
WriteConsoleW

mmcndmgr

DllRegisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

cryptui

WizardFree
DllUnregisterServer
LocalEnroll
CryptUIStartCertMgr
LocalEnroll
CryptUIDlgViewContext
CryptUIWizImport
CryptUIWizDigitalSign
CryptUIWizExport
DllRegisterServer
LocalEnrollNoDS
WizardFree
CryptUIWizBuildCTL

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.expimp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87e4557979d687387bda19a6fdc5e02f

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.expimp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.expimp
Size: 512B - Virtual size: 80B