d2c6f922baa281f5735596387ca5edd510c85a43df653d4b1612e97c22f90b96

General

Target

d2c6f922baa281f5735596387ca5edd510c85a43df653d4b1612e97c22f90b96
Size

772KB
MD5

0ab93e2a53c005198ad1a8f016028141
SHA1

212e27ad1a5247a776d7b992247e2a49e0479b7c
SHA256

d2c6f922baa281f5735596387ca5edd510c85a43df653d4b1612e97c22f90b96
SHA512

47f00ce5e0c3c50fa90ed1720d76f54ad7aedeab3a7ffc4529fbe9d97631014d291284f03ca8fc88deec8db85d5a0f31e8df8e507eb0a1233e8437fe4632f854
SSDEEP

12288:dMp2A69bimiExDxEN7CSIZY5FEyFBFoBS662kvDkFHvOWtLlhIIQVY3AcKyIw:7BimjXgWhZY5DFv6TkvyHvOWtLlR1Ar

Score

N/A

Malware Config

Signatures

Files

d2c6f922baa281f5735596387ca5edd510c85a43df653d4b1612e97c22f90b96
.exe windows x86

e0ecb7394f090daaf6a82bdd5a0af62c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapDestroy
WriteConsoleW
SetEvent
Sleep
GetCommandLineA
CopyFileA
WriteConsoleW
GetFileAttributesA
GetStartupInfoA
lstrcpyA
VirtualProtect
GetPrivateProfileSectionW
CancelIo
lstrlenW
GetModuleHandleA
GetStdHandle
DeleteFileA
GetDriveTypeW
WriteConsoleW
GetProcessHeap
VirtualQueryEx

mmcndmgr

DllRegisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

cryptui

DllRegisterServer
CryptUIStartCertMgr
CryptUIWizBuildCTL
LocalEnroll
CryptUIWizExport
CryptUIWizImport
CryptUIWizDigitalSign
WizardFree
CryptUIDlgViewContext
LocalEnroll
DllUnregisterServer
WizardFree
LocalEnrollNoDS

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 765KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0ecb7394f090daaf6a82bdd5a0af62c

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 765KB - Virtual size: 2.1MB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 765KB - Virtual size: 2.1MB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B