8f495654d35e27a09c9fdfef199e560d5a7b87e92c36b0ec633a7e43197cc480

General

Target

8f495654d35e27a09c9fdfef199e560d5a7b87e92c36b0ec633a7e43197cc480
Size

292KB
MD5

841201c0cc35d3da3a811318f54b0340
SHA1

790826357e42122b3addd329161518d5aea0ec00
SHA256

8f495654d35e27a09c9fdfef199e560d5a7b87e92c36b0ec633a7e43197cc480
SHA512

5c823070572649431643b51bebdd004dd3158a2c61f92187c4deb017edde3bd9092232fa6588748822fcba6289a85188380813d4275bcbda1d21ff59bfe28ac8
SSDEEP

6144:ACe2+6SXdrC5opAPGGB8mN/lu6ROfe2Aac10sa:nH+NdrC5iAPnB8mHZRme2casa

Score

N/A

Malware Config

Signatures

Files

8f495654d35e27a09c9fdfef199e560d5a7b87e92c36b0ec633a7e43197cc480
.exe windows x86

d9f049363b62b7b64e78a6c4522c867b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetFileAttributesW
VirtualProtect
GetStartupInfoA
SetEvent
GetCommandLineA
DeleteFileA
GetProcessHeap
WriteConsoleW
VirtualQueryEx
Sleep
lstrcpyA
GetPrivateProfileSectionW
lstrlenW
WriteConsoleW
WriteConsoleW
GetDriveTypeW
HeapDestroy
CopyFileA
GetModuleHandleA
GetStdHandle
ResumeThread

mmcndmgr

DllRegisterServer
DllCanUnloadNow
DllGetClassObject
DllRegisterServer

cryptui

CryptUIWizExport
WizardFree
CryptUIDlgViewContext
DllUnregisterServer
CryptUIStartCertMgr
LocalEnroll
CryptUIWizDigitalSign
LocalEnrollNoDS
CryptUIWizBuildCTL
CryptUIWizImport
DllRegisterServer
WizardFree
LocalEnroll

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.expimp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d9f049363b62b7b64e78a6c4522c867b

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 284KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 257B

.expimp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 284KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 257B

.expimp
Size: 512B - Virtual size: 80B