bbe5e4b2622f2e487825afaf96f7f9b243e0d533a9f81c140a4d0d5634828c0f

General

Target

bbe5e4b2622f2e487825afaf96f7f9b243e0d533a9f81c140a4d0d5634828c0f
Size

118KB
MD5

963fb5fab04b26cd40b0699e86a811d0
SHA1

26c369295177eabc4993df5377109dd22edfcbab
SHA256

bbe5e4b2622f2e487825afaf96f7f9b243e0d533a9f81c140a4d0d5634828c0f
SHA512

c5047019448b85b06603a72019a4bfd17329f1f57239bdabce4398e54c0036523fe3f34d6348d9fc2638bb29173b40de084b59446edab354724867d9fab9494d
SSDEEP

3072:dcXEwVoESU86S0e+Xv16Ls4DK734juUwL:dNtyS0l16Ls8mok

Score

N/A

Malware Config

Signatures

Files

bbe5e4b2622f2e487825afaf96f7f9b243e0d533a9f81c140a4d0d5634828c0f
.exe windows x86

a63caba94590321d88a646136af291ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcpyA
GetPrivateProfileSectionW
WriteConsoleW
GetFileAttributesW
GetModuleHandleA
CopyFileA
HeapDestroy
SetEvent
GetDriveTypeW
GetStdHandle
lstrlenW
GetCommandLineA
DeleteFileA
Sleep
VirtualProtect
WriteConsoleW
VirtualQueryEx
WriteConsoleW
ResumeThread
GetProcessHeap
GetStartupInfoA

mmcndmgr

DllGetClassObject
DllCanUnloadNow
DllRegisterServer
DllRegisterServer

cryptui

CryptUIStartCertMgr
LocalEnrollNoDS
CryptUIWizDigitalSign
CryptUIWizExport
CryptUIWizImport
CryptUIWizBuildCTL
WizardFree
LocalEnroll
DllRegisterServer
WizardFree
LocalEnroll
DllUnregisterServer
CryptUIDlgViewContext

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.expimp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a63caba94590321d88a646136af291ff

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.expimp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.expimp
Size: 512B - Virtual size: 80B