b9e1ec7cd04d5b8378790e9fdf5cafbe12149d1e562c6a64c3cc1b7e3564d169

General

Target

b9e1ec7cd04d5b8378790e9fdf5cafbe12149d1e562c6a64c3cc1b7e3564d169
Size

110KB
MD5

528674f503b76d5aba17bc8fba11b320
SHA1

ab673f3996496053b942c9f007429b3a44c1c04e
SHA256

b9e1ec7cd04d5b8378790e9fdf5cafbe12149d1e562c6a64c3cc1b7e3564d169
SHA512

d824ce7ee9203c58da0caa1e48de3bfafca74767df483bce2d618897ad0fc5c533091fedd089f303e178c991a09fe97db23f19fbd7408435e589486d8271e034
SSDEEP

3072:L0nrc8vVbtbe8kAHUwmUrTo/kbkTDWIFoV+A:Lr8dRvvU7MYk+WIFp

Score

N/A

Malware Config

Signatures

Files

b9e1ec7cd04d5b8378790e9fdf5cafbe12149d1e562c6a64c3cc1b7e3564d169
.exe windows x86

23fe807133032a5733c4d5e78ae915ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStartupInfoA
GetCommandLineA
Sleep
lstrlenW
GetFileAttributesA
HeapDestroy
GetProcessHeap
lstrcpyA
GetDriveTypeW
GetModuleHandleA
VirtualProtect
CancelIo
GetPrivateProfileSectionW
DeleteFileA
WriteConsoleW
CopyFileA
GetStdHandle
WriteConsoleW
SetEvent
VirtualQueryEx
WriteConsoleW

mmcndmgr

DllGetClassObject
DllCanUnloadNow
DllRegisterServer
DllRegisterServer

cryptui

LocalEnroll
LocalEnrollNoDS
LocalEnroll
CryptUIStartCertMgr
CryptUIDlgViewContext
DllUnregisterServer
DllRegisterServer
CryptUIWizImport
CryptUIWizDigitalSign
CryptUIWizExport
CryptUIWizBuildCTL
WizardFree
WizardFree

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23fe807133032a5733c4d5e78ae915ab

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 103KB - Virtual size: 103KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 112B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 103KB - Virtual size: 103KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 112B