ccf6bbf41b17eb97611183242642300afabe5afaf5529358bd67b76286d325b2

General

Target

ccf6bbf41b17eb97611183242642300afabe5afaf5529358bd67b76286d325b2
Size

292KB
MD5

09c3488311e59d9924eb43811a8a2470
SHA1

bad27338d924f03ea7d4ba2621d071b4bf14a375
SHA256

ccf6bbf41b17eb97611183242642300afabe5afaf5529358bd67b76286d325b2
SHA512

2ddaa496af403bdc2ba4fe28839aac3203081130a38be95f1e0815568e6992d2fc5f0735792d1742dd793d77125645895cb18315d37d2a9dab78db23d5280a8d
SSDEEP

6144:VDe2+6SNjSxn/m7O4aneuWlLGN9KCHYlJN4p92uKJbEo:VDH+zjWnYO4aneuWlaNd4lJ6+HJb

Score

N/A

Malware Config

Signatures

Files

ccf6bbf41b17eb97611183242642300afabe5afaf5529358bd67b76286d325b2
.exe windows x86

7cd917d252737c5d5c06749c92747f0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileSectionW
lstrlenW
GetStartupInfoA
GetFileAttributesW
DeleteFileA
SetEvent
WriteConsoleW
GetStdHandle
WriteConsoleW
lstrcpyA
GetModuleHandleA
GetProcessHeap
HeapDestroy
GetCommandLineA
VirtualProtect
GetDriveTypeW
VirtualQueryEx
CancelIo
Sleep
CopyFileA
WriteConsoleW

mmcndmgr

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllRegisterServer

cryptui

WizardFree
CryptUIWizExport
CryptUIDlgViewContext
LocalEnroll
CryptUIWizImport
WizardFree
DllRegisterServer
LocalEnrollNoDS
CryptUIWizBuildCTL
LocalEnroll
DllUnregisterServer
CryptUIWizDigitalSign
CryptUIStartCertMgr

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7cd917d252737c5d5c06749c92747f0e

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 284KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 284KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B