deaae2193db1851a096479c79463fd5506f2a319904b686a9a2d6566fca8f50e

General

Target

deaae2193db1851a096479c79463fd5506f2a319904b686a9a2d6566fca8f50e
Size

148KB
MD5

848b6f45510e7f4bd20362bfbf45e780
SHA1

323e3ec4122158232f869f85cef9a344e821d331
SHA256

deaae2193db1851a096479c79463fd5506f2a319904b686a9a2d6566fca8f50e
SHA512

33acc60512734e13f3fbdbfa9ec7583912bc4ef546183cd11756a6c09fb3ae1d85746f0208141aa91fd29f6a745474407cbdb17b7475085c3842242dc02e7423
SSDEEP

3072:zx8x/3rMtO1zsnJAznzLboLXVHZHNuE0+ZLXgnDIoWgm7cen+:Y3oO1yJALzArNGE0yLIIoW+en+

Score

N/A

Malware Config

Signatures

Files

deaae2193db1851a096479c79463fd5506f2a319904b686a9a2d6566fca8f50e
.exe windows x86

2477b40e618d0d76800596da68619b1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStartupInfoA
SetEvent
lstrcpyA
CancelIo
GetFileAttributesW
WriteConsoleW
Sleep
GetProcessHeap
WriteConsoleW
GetModuleHandleA
lstrlenW
GetStdHandle
VirtualProtect
GetCommandLineA
GetDriveTypeW
GetPrivateProfileSectionW
VirtualQueryEx
DeleteFileA
CopyFileA
WriteConsoleW
HeapDestroy

mmcndmgr

DllGetClassObject
DllRegisterServer
DllCanUnloadNow
DllRegisterServer

cryptui

LocalEnroll
CryptUIWizBuildCTL
DllRegisterServer
CryptUIWizExport
CryptUIWizImport
DllUnregisterServer
CryptUIWizDigitalSign
LocalEnroll
WizardFree
CryptUIStartCertMgr
WizardFree
LocalEnrollNoDS
CryptUIDlgViewContext

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2477b40e618d0d76800596da68619b1d

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 284KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 284KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B