15eae0ac7c080cbfd6691ac342f2f5c21cc218d5c8b7e83eba37e2f0d0125483

General

Target

15eae0ac7c080cbfd6691ac342f2f5c21cc218d5c8b7e83eba37e2f0d0125483
Size

111KB
MD5

90ce011ce169d5def642343dc065aa4d
SHA1

49d94e600b7fbdc7032d55ba6bc58e6246a3b201
SHA256

15eae0ac7c080cbfd6691ac342f2f5c21cc218d5c8b7e83eba37e2f0d0125483
SHA512

6966409bfdd13f13cf9cebc71a40d42b474c363e5dfe4dbc42d04ec464c6be5576ba26d34633c87d38c70189d0886af9eb139ee0acadf58c8662cd92210b69c1
SSDEEP

1536:jgW8VTuugUJI93w/BjQ7pzlVfHA/eRp4axXWCcTQkJMNMFAH+r39qAvJ9PvqlHbd:hugUC3Ot85VfHA2vRoQkJ5OyHx93

Score

N/A

Malware Config

Signatures

Files

15eae0ac7c080cbfd6691ac342f2f5c21cc218d5c8b7e83eba37e2f0d0125483
.exe windows x86

2d6eae55c4486a676efffd792b3c5411

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCommandLineA
DeleteFileA
GetProcessHeap
WriteConsoleW
SetEvent
WriteConsoleW
WriteConsoleW
GetStdHandle
CopyFileA
lstrcpyA
VirtualProtect
ResumeThread
HeapDestroy
lstrlenW
GetDriveTypeW
VirtualQueryEx
GetPrivateProfileSectionW
GetStartupInfoA
GetModuleHandleA
GetFileAttributesW
Sleep

mmcndmgr

DllRegisterServer
DllGetClassObject
DllCanUnloadNow
DllRegisterServer

cryptui

CryptUIWizImport
DllRegisterServer
CryptUIWizExport
LocalEnroll
DllUnregisterServer
WizardFree
WizardFree
LocalEnroll
CryptUIDlgViewContext
CryptUIStartCertMgr
LocalEnrollNoDS
CryptUIWizDigitalSign
CryptUIWizBuildCTL

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.expimp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d6eae55c4486a676efffd792b3c5411

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 103KB - Virtual size: 103KB

.rdata Size: 512B - Virtual size: 257B

.expimp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 103KB - Virtual size: 103KB

.rdata
Size: 512B - Virtual size: 257B

.expimp
Size: 512B - Virtual size: 80B