66f6583925bfb346d1a17c6018f0c04c967972e9a7e3811664ededf122ef9893

General

Target

66f6583925bfb346d1a17c6018f0c04c967972e9a7e3811664ededf122ef9893
Size

772KB
MD5

6f10eacf1dc96e88bf5b611c952fa7f1
SHA1

62ca53c373938a719756d8667080dc8cbd27d08c
SHA256

66f6583925bfb346d1a17c6018f0c04c967972e9a7e3811664ededf122ef9893
SHA512

079b973926fdf0d4dfc359dc4e5f0b27788ed22e2757110f276012f23dfe84382f674b959897539ba9975c6a8605a7df156b5963c47e14b4c5bfc118d9e6be8f
SSDEEP

12288:OiTQksulivSdDzsPcG/4TbOOksCEnOX4UrJT3WVqbr9jlqcuCQETnFyAor:JnwuUcxCOkslOX9cSrfqnCDFyAo

Score

N/A

Malware Config

Signatures

Files

66f6583925bfb346d1a17c6018f0c04c967972e9a7e3811664ededf122ef9893
.exe windows x86

9490f58b3beb552e4251e1042adc4d6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CopyFileA
WriteConsoleW
Sleep
GetFileAttributesA
GetStdHandle
GetProcessHeap
CancelIo
SetEvent
GetCommandLineA
WriteConsoleW
GetDriveTypeW
GetModuleHandleA
WriteConsoleW
GetPrivateProfileSectionW
lstrlenW
lstrcpyA
DeleteFileA
VirtualProtect
VirtualQueryEx
HeapDestroy
GetStartupInfoA

mmcndmgr

DllRegisterServer
DllGetClassObject
DllRegisterServer
DllCanUnloadNow

cryptui

CryptUIStartCertMgr
LocalEnroll
DllUnregisterServer
CryptUIWizImport
DllRegisterServer
CryptUIWizBuildCTL
CryptUIDlgViewContext
CryptUIWizDigitalSign
CryptUIWizExport
LocalEnrollNoDS
WizardFree
WizardFree
LocalEnroll

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 765KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9490f58b3beb552e4251e1042adc4d6d

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 765KB - Virtual size: 2.1MB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 96B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 765KB - Virtual size: 2.1MB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 96B