dff572a4ba83ad806ae19cb40e29c43d118a14f60c9779c643afc335fea3eb1b

General

Target

dff572a4ba83ad806ae19cb40e29c43d118a14f60c9779c643afc335fea3eb1b
Size

67KB
MD5

a2ea7fde1604ce37ae0fd3a9a7766f00
SHA1

31e03c5b98507bb7b028831331d8df9f1b4eb4d3
SHA256

dff572a4ba83ad806ae19cb40e29c43d118a14f60c9779c643afc335fea3eb1b
SHA512

ce4ec6d12cea8e1ed7cc6f5ee0f319fc77cf6868f542dfc77c592cf7b34c3c259da8381c9c92db2a120ca92d7f75983726197865ede6c87c3c77faab40719e25
SSDEEP

1536:D385V9hKym9wYlBE6SmFQEqvAD/AD99vIcddsVMiSkTU+:D3cVuymJBqmCEwDzXsVH

Score

N/A

Malware Config

Signatures

Files

dff572a4ba83ad806ae19cb40e29c43d118a14f60c9779c643afc335fea3eb1b
.exe windows x86

a61cc266ffe40ed821b02c6e6ebc86c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrlenW
WriteConsoleW
WriteConsoleW
ResumeThread
WriteConsoleW
GetCommandLineA
GetStdHandle
HeapDestroy
SetEvent
GetModuleHandleA
lstrcpyA
GetPrivateProfileSectionW
GetStartupInfoA
GetDriveTypeW
Sleep
VirtualProtect
GetProcessHeap
GetFileAttributesW
DeleteFileA
CopyFileA
VirtualQueryEx

mmcndmgr

DllRegisterServer
DllRegisterServer
DllCanUnloadNow
DllGetClassObject

cryptui

CryptUIDlgViewContext
CryptUIWizBuildCTL
WizardFree
DllUnregisterServer
CryptUIWizExport
LocalEnroll
CryptUIWizDigitalSign
CryptUIStartCertMgr
DllRegisterServer
LocalEnroll
WizardFree
CryptUIWizImport
LocalEnrollNoDS

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.expimp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a61cc266ffe40ed821b02c6e6ebc86c0

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 60KB - Virtual size: 72KB

.rdata Size: 512B - Virtual size: 257B

.expimp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 60KB - Virtual size: 72KB

.rdata
Size: 512B - Virtual size: 257B

.expimp
Size: 512B - Virtual size: 80B