368290fc016ae53f19eb8958226eeac7041d322f8ce5078ed8daece83b192823

General

Target

368290fc016ae53f19eb8958226eeac7041d322f8ce5078ed8daece83b192823
Size

291KB
MD5

61fcdef805ac2e85ac5584b2042bff70
SHA1

29f96805e25463f7ff0c7b8be39069a4392773b6
SHA256

368290fc016ae53f19eb8958226eeac7041d322f8ce5078ed8daece83b192823
SHA512

2b25693441a9c8e2e2a9b5be99917b18d307d529ec4e4e14c37df8d50910fe0bc5e517d8ce7dd3ea45974ceaae519146f02315bed87fbaf580bb419f565c251a
SSDEEP

6144:Id3oO1y1xHIMJWT1b1Ezr74D4rimfQV45HScu8J+vnz2jBDN8niSnMUqMCbAOxl2:IzU45ar74DU9fQV4u8J+vI6BMXNP

Score

N/A

Malware Config

Signatures

Files

368290fc016ae53f19eb8958226eeac7041d322f8ce5078ed8daece83b192823
.exe windows x86

d2b0006a837c18e85469cb94cb08fb8d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
WriteConsoleW
GetProcessHeap
GetModuleHandleA
HeapDestroy
GetStartupInfoA
VirtualQueryEx
GetCommandLineA
lstrcpyA
lstrlenW
SetEvent
GetFileAttributesA
GetStdHandle
GetDriveTypeW
WriteConsoleW
Sleep
CopyFileA
DeleteFileA
WriteConsoleW
CancelIo
GetPrivateProfileSectionW

mmcndmgr

DllRegisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

cryptui

CryptUIWizImport
CryptUIDlgViewContext
DllUnregisterServer
LocalEnroll
CryptUIWizDigitalSign
LocalEnrollNoDS
DllRegisterServer
LocalEnroll
CryptUIStartCertMgr
CryptUIWizExport
WizardFree
WizardFree
CryptUIWizBuildCTL

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d2b0006a837c18e85469cb94cb08fb8d

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 284KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 112B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 284KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 112B