b5fa851d340496906aa6b188a8c48ef20396e7020473b705c636ff2d69985912

General

Target

b5fa851d340496906aa6b188a8c48ef20396e7020473b705c636ff2d69985912
Size

118KB
MD5

55e2602569a1c8cbd54bbb33d6b96f70
SHA1

2c26c588312a6b0b6c2b878cb61e1867a1a8ac48
SHA256

b5fa851d340496906aa6b188a8c48ef20396e7020473b705c636ff2d69985912
SHA512

28546b89867f190f7890d32bca19c88c291451fbe7348096017747b8db01b824a82e8153365038c10c60c93bce50e022b889b0e7d028606b34544fe73aea4672
SSDEEP

3072:YFMTzMa11ixXhHyzzomctD9ul9B+vjY1UoHpoR:8MTwa1gX9UKd9ul94v0VoR

Score

N/A

Malware Config

Signatures

Files

b5fa851d340496906aa6b188a8c48ef20396e7020473b705c636ff2d69985912
.exe windows x86

5643092b188d5c36ee7ba5e9c6c3dd18

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileSectionW
VirtualProtect
WriteConsoleW
CopyFileA
lstrcpyA
GetFileAttributesW
HeapDestroy
ResumeThread
WriteConsoleW
GetStartupInfoA
DeleteFileA
GetModuleHandleA
VirtualQueryEx
Sleep
WriteConsoleW
GetStdHandle
lstrlenW
SetEvent
GetDriveTypeW
GetCommandLineA
GetProcessHeap

mmcndmgr

DllRegisterServer
DllGetClassObject
DllRegisterServer
DllCanUnloadNow

cryptui

CryptUIWizImport
DllUnregisterServer
CryptUIStartCertMgr
CryptUIWizExport
LocalEnrollNoDS
DllRegisterServer
LocalEnroll
CryptUIDlgViewContext
WizardFree
CryptUIWizDigitalSign
CryptUIWizBuildCTL
LocalEnroll
WizardFree

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.expimp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5643092b188d5c36ee7ba5e9c6c3dd18

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.expimp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.expimp
Size: 512B - Virtual size: 80B