b6e9e55cf3e82dc83e88493e735cfc734b2df5c9abf62e59e63fae6e798edafa

General

Target

b6e9e55cf3e82dc83e88493e735cfc734b2df5c9abf62e59e63fae6e798edafa
Size

111KB
MD5

8060910345767de8053f2587c9a79d70
SHA1

cd3602566c71f42fe3517b1eafa2c8e584c619d2
SHA256

b6e9e55cf3e82dc83e88493e735cfc734b2df5c9abf62e59e63fae6e798edafa
SHA512

570251a06148545adb1c2c0fa6652c332264e76ec15188c1772fc7e435369ce5a69ccb2d21202f7184f3ed13fe3a17459a945455ceca2dbcf40f2f65979e723a
SSDEEP

1536:44wiNGmkvv0Ci9zr+a3hqUQ5VlRBgxnPa8dGt4HywNxxn4sCfrsF8cF:4CGmkvv0LSaR/EV6xSiuGJNxBg5

Score

N/A

Malware Config

Signatures

Files

b6e9e55cf3e82dc83e88493e735cfc734b2df5c9abf62e59e63fae6e798edafa
.exe windows x86

0309bc8691114a57ce0ec3b7968a7c49

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

Sleep
GetDriveTypeW
HeapDestroy
GetModuleHandleA
WriteConsoleW
VirtualQueryEx
GetFileAttributesW
WriteConsoleW
GetCommandLineA
DeleteFileA
GetPrivateProfileSectionW
lstrlenW
VirtualProtect
ResumeThread
CopyFileA
GetProcessHeap
GetStartupInfoA
lstrcpyA
WriteConsoleW
GetStdHandle
SetEvent

mmcndmgr

DllGetClassObject
DllRegisterServer
DllCanUnloadNow
DllRegisterServer

cryptui

CryptUIWizBuildCTL
CryptUIDlgViewContext
LocalEnroll
LocalEnrollNoDS
WizardFree
WizardFree
DllRegisterServer
CryptUIWizExport
DllUnregisterServer
CryptUIWizImport
CryptUIWizDigitalSign
LocalEnroll
CryptUIStartCertMgr

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.expimp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0309bc8691114a57ce0ec3b7968a7c49

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 104KB - Virtual size: 103KB

.rdata Size: 512B - Virtual size: 257B

.expimp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 104KB - Virtual size: 103KB

.rdata
Size: 512B - Virtual size: 257B

.expimp
Size: 512B - Virtual size: 80B