02cf93687eb875d3113330086f76cb4f2de648e7586531a0a8ccbc94ce4151c0

General

Target

02cf93687eb875d3113330086f76cb4f2de648e7586531a0a8ccbc94ce4151c0
Size

67KB
MD5

6c710dce41e97565afd5b6acb8afc310
SHA1

4ea0d86c524eb05f48dfd51f43166b848dff75f6
SHA256

02cf93687eb875d3113330086f76cb4f2de648e7586531a0a8ccbc94ce4151c0
SHA512

e97f3a83bc66b70ae6e2089d948099fa331cc17df5385c0e85bf804ffb08854c2ba2333409a5e115b5bdca49486f559f0069813834042a433b275ad45df7ac87
SSDEEP

1536:EleMaKl2WeWW5tfcTsKQkbhYnCWgObvZJupGOt8mm/Ax+C8EphFWtzm:wpwWe/58sKQkaF11cpQmCAZFpzWtz

Score

N/A

Malware Config

Signatures

Files

02cf93687eb875d3113330086f76cb4f2de648e7586531a0a8ccbc94ce4151c0
.exe windows x86

aecda48f642ad250a0ce8fa12e58184f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcpyA
DeleteFileA
GetStdHandle
GetCommandLineA
GetModuleHandleA
Sleep
VirtualProtect
WriteConsoleW
SetEvent
GetPrivateProfileSectionW
GetStartupInfoA
GetDriveTypeW
GetProcessHeap
lstrlenW
WriteConsoleW
VirtualQueryEx
GetFileAttributesW
CopyFileA
ResumeThread
HeapDestroy
WriteConsoleW

mmcndmgr

DllRegisterServer
DllRegisterServer
DllCanUnloadNow
DllGetClassObject

cryptui

WizardFree
WizardFree
LocalEnroll
DllRegisterServer
CryptUIWizDigitalSign
CryptUIStartCertMgr
DllUnregisterServer
CryptUIWizBuildCTL
CryptUIWizImport
CryptUIWizExport
CryptUIDlgViewContext
LocalEnrollNoDS
LocalEnroll

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.expimp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aecda48f642ad250a0ce8fa12e58184f

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 60KB - Virtual size: 72KB

.rdata Size: 512B - Virtual size: 257B

.expimp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 60KB - Virtual size: 72KB

.rdata
Size: 512B - Virtual size: 257B

.expimp
Size: 512B - Virtual size: 80B