e29d183ab664e27c05d2a30b668e43ccb3d92e0da12ff3e88a344a3c28ca110d

General

Target

e29d183ab664e27c05d2a30b668e43ccb3d92e0da12ff3e88a344a3c28ca110d
Size

291KB
MD5

93187156f18ff41665c7f65d267b6e30
SHA1

c96c2eb361161d411cb5813518e03084783bf2c3
SHA256

e29d183ab664e27c05d2a30b668e43ccb3d92e0da12ff3e88a344a3c28ca110d
SHA512

4b7fac1a9208818fa4dc1338e6b914e540dbe9626f63f83d835f0d449885bdbab2fbbedabb6753a17b26d9265124510a156738fd7deeae4833bac220becf08fa
SSDEEP

6144:R3oO1yM/oUI+VWMMyUZnyHsRvp6DYSGgngE+8Mxqy3zmK4kZf7itYY:FzPUMYlyHSADYrjTvQAz14u7Q3

Score

N/A

Malware Config

Signatures

Files

e29d183ab664e27c05d2a30b668e43ccb3d92e0da12ff3e88a344a3c28ca110d
.exe windows x86

46377489321ee25446f6755b58fdd1a6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileSectionW
HeapDestroy
CopyFileA
lstrcpyA
DeleteFileA
WriteConsoleW
Sleep
VirtualQueryEx
WriteConsoleW
GetProcessHeap
GetStdHandle
GetFileAttributesA
VirtualProtect
GetModuleHandleA
lstrlenW
WriteConsoleW
GetStartupInfoA
CancelIo
SetEvent
GetCommandLineA
GetDriveTypeW

mmcndmgr

DllRegisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

cryptui

CryptUIWizExport
DllUnregisterServer
LocalEnroll
DllRegisterServer
CryptUIWizBuildCTL
LocalEnroll
LocalEnrollNoDS
CryptUIStartCertMgr
CryptUIWizDigitalSign
CryptUIWizImport
WizardFree
CryptUIDlgViewContext
WizardFree

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46377489321ee25446f6755b58fdd1a6

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 284KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 96B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 284KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 96B