502e5c3bdce183d45ad3970be8815088f00b31b795e03132b1a2e60e2cc65aa8

General

Target

502e5c3bdce183d45ad3970be8815088f00b31b795e03132b1a2e60e2cc65aa8
Size

291KB
MD5

a2c580327880b192a8e4da1b74b8c0b0
SHA1

e18a123311f0bfeea20f9f9e48a46b18bbb057d6
SHA256

502e5c3bdce183d45ad3970be8815088f00b31b795e03132b1a2e60e2cc65aa8
SHA512

d2a4197da9d54c0dda8091a5de759c1e0a610028e4fec602c80694be44f1254d1cfa9f532855c4bf85eb81b6b216c33e8275fddb670737413fa9d38647e471b2
SSDEEP

6144:f3oO1yN81zm7AKX7MlsilGkagMJAEmb2gHOkavjgbVULWQJhfHLY:Pz55qb4YkvMJ1OBEgbVy1DjY

Score

N/A

Malware Config

Signatures

Files

502e5c3bdce183d45ad3970be8815088f00b31b795e03132b1a2e60e2cc65aa8
.exe windows x86

9002391fb565ca50ea4b06c479d54975

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WriteConsoleW
CancelIo
GetDriveTypeW
lstrcpyA
GetFileAttributesW
GetCommandLineA
VirtualProtect
WriteConsoleW
GetPrivateProfileSectionW
lstrlenW
HeapDestroy
WriteConsoleW
Sleep
GetStdHandle
GetModuleHandleA
DeleteFileA
SetEvent
GetStartupInfoA
GetProcessHeap
CopyFileA
VirtualQueryEx

mmcndmgr

DllRegisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

cryptui

LocalEnroll
CryptUIWizBuildCTL
CryptUIStartCertMgr
CryptUIWizImport
CryptUIWizExport
WizardFree
LocalEnrollNoDS
CryptUIWizDigitalSign
CryptUIDlgViewContext
LocalEnroll
DllRegisterServer
WizardFree
DllUnregisterServer

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9002391fb565ca50ea4b06c479d54975

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 284KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 284KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B