055b010bd010f22b483fde41521f99af2b17efa4567cae60ff080570eb506342

General

Target

055b010bd010f22b483fde41521f99af2b17efa4567cae60ff080570eb506342
Size

118KB
MD5

63a28bd5e7bf5b359e5c5e066417fac0
SHA1

7eaa0193d750c72ec235cde8b3dc524311cb0787
SHA256

055b010bd010f22b483fde41521f99af2b17efa4567cae60ff080570eb506342
SHA512

87e6b731d8e5996a2b10890973481221632d724aa5440a9f660d0ad32fbe1a3191d0b18ed12a5cd1122e91ea46d15986d074343394ad154418bcf817ada2bb53
SSDEEP

3072:3OBV34qMFhf+b1eylUAxoOknrAlSGAjVTC+Kl5tFTJY:3ODxMFhmxrlyF1jVTCVl5t/

Score

N/A

Malware Config

Signatures

Files

055b010bd010f22b483fde41521f99af2b17efa4567cae60ff080570eb506342
.exe windows x86

a94c4fe06314b27fb7dfffbea0e913f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileSectionW
GetStdHandle
CancelIo
DeleteFileA
GetModuleHandleA
WriteConsoleW
CopyFileA
lstrlenW
VirtualProtect
SetEvent
GetCommandLineA
lstrcpyA
HeapDestroy
WriteConsoleW
VirtualQueryEx
Sleep
GetFileAttributesW
GetStartupInfoA
WriteConsoleW
GetProcessHeap
GetDriveTypeW

mmcndmgr

DllGetClassObject
DllRegisterServer
DllCanUnloadNow
DllRegisterServer

cryptui

CryptUIDlgViewContext
CryptUIWizExport
CryptUIWizImport
DllUnregisterServer
CryptUIWizBuildCTL
LocalEnrollNoDS
LocalEnroll
CryptUIStartCertMgr
WizardFree
DllRegisterServer
WizardFree
LocalEnroll
CryptUIWizDigitalSign

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a94c4fe06314b27fb7dfffbea0e913f3

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B