8d99ffad2f0f3fa0db7168b9fc860da4cdfcec7f52d91eb1458fe0c99e56ba5a

General

Target

8d99ffad2f0f3fa0db7168b9fc860da4cdfcec7f52d91eb1458fe0c99e56ba5a
Size

117KB
MD5

a017779382bdab1fac488284eccf3740
SHA1

a1a3a8603d1cc88b571bc141bd61237b612f9160
SHA256

8d99ffad2f0f3fa0db7168b9fc860da4cdfcec7f52d91eb1458fe0c99e56ba5a
SHA512

a7125250303396360b6cf1635f44c7ca1627c5959c8e1cbf8e6af759d692961b35a389ddadab41c6579910eb1a2c2928aedb5d676e028ea109eba2343d5318d7
SSDEEP

1536:fjEC7hi+ygmxUq3nlpUoCuS4SUoQ8cxu2C/0ck44pKnf/hSZQFzp6BQVmhwW:rAgmxh1TSZUoqJe9f/U+Fz8BQVmWW

Score

N/A

Malware Config

Signatures

Files

8d99ffad2f0f3fa0db7168b9fc860da4cdfcec7f52d91eb1458fe0c99e56ba5a
.exe windows x86

f0f7fd4948559aa43254e9ed73e3a34a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

Sleep
WriteConsoleW
GetCommandLineA
WriteConsoleW
VirtualProtect
CancelIo
GetStdHandle
SetEvent
GetPrivateProfileSectionW
CopyFileA
lstrcpyA
VirtualQueryEx
DeleteFileA
HeapDestroy
GetDriveTypeW
GetStartupInfoA
GetProcessHeap
WriteConsoleW
GetFileAttributesA
lstrlenW
GetModuleHandleA

mmcndmgr

DllGetClassObject
DllRegisterServer
DllCanUnloadNow
DllRegisterServer

cryptui

CryptUIWizBuildCTL
WizardFree
DllUnregisterServer
CryptUIWizImport
CryptUIDlgViewContext
CryptUIWizDigitalSign
DllRegisterServer
LocalEnroll
CryptUIStartCertMgr
WizardFree
LocalEnroll
LocalEnrollNoDS
CryptUIWizExport

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f0f7fd4948559aa43254e9ed73e3a34a

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 112B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 112B