bef9147f3005999027d1321209d9352f5c83a1dbda761aeedcaa7ad1f6250263

General

Target

bef9147f3005999027d1321209d9352f5c83a1dbda761aeedcaa7ad1f6250263
Size

118KB
MD5

9292728b0c9d3cf2bc0154c6eca2b078
SHA1

8fbc5bdea3fb2f1613ec2f21dc941bb11206781a
SHA256

bef9147f3005999027d1321209d9352f5c83a1dbda761aeedcaa7ad1f6250263
SHA512

2d0d6c1fe5cc80f2671bd18e5c3e9a2ed759ecdee2fb3a090f6fa9d1d68e71934e37e9a68103ee69d54cb7fd7e2221d3703f9b630fea4a3d22de8b6465632b4b
SSDEEP

3072:sF0A2WeUtWcEnUJBa/V7G9rnVv0vKSEUXP1rdBK0JyIYXON:K2WNtPJDatC9bVcXx/1JBKoyIYe

Score

N/A

Malware Config

Signatures

Files

bef9147f3005999027d1321209d9352f5c83a1dbda761aeedcaa7ad1f6250263
.exe windows x86

d194c3ddcab77c5d04e9ff142e6a9314

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetEvent
GetStartupInfoA
WriteConsoleW
GetFileAttributesW
CopyFileA
HeapDestroy
lstrcpyA
WriteConsoleW
GetDriveTypeW
GetCommandLineA
DeleteFileA
Sleep
WriteConsoleW
GetStdHandle
lstrlenW
CancelIo
GetProcessHeap
VirtualQueryEx
GetPrivateProfileSectionW
VirtualProtect
GetModuleHandleA

mmcndmgr

DllRegisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

cryptui

CryptUIWizBuildCTL
CryptUIDlgViewContext
WizardFree
LocalEnrollNoDS
DllUnregisterServer
CryptUIWizExport
CryptUIWizDigitalSign
DllRegisterServer
CryptUIStartCertMgr
LocalEnroll
WizardFree
LocalEnroll
CryptUIWizImport

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d194c3ddcab77c5d04e9ff142e6a9314

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B