ab885e61f26cf144245d72e1d58bcf23970761c9169449dced2d58a1f6f1a5fd

General

Target

ab885e61f26cf144245d72e1d58bcf23970761c9169449dced2d58a1f6f1a5fd
Size

771KB
MD5

0c352828120984a6fbadfe782e4f4bc7
SHA1

6689b13c9605f12dde78ba04eea5fe61ec9d6796
SHA256

ab885e61f26cf144245d72e1d58bcf23970761c9169449dced2d58a1f6f1a5fd
SHA512

8c4fef5525d10ac31b37a9767320b9a45b51f658685de616cefc9313f1dc19088bc802aee4c8b8e32bb91f15031445ca7dbffe1303aa243b1d532dd171559ca6
SSDEEP

12288:hYBzVdUF/382U27cMc5GmJffXTe8DCl22S+DL0Wvp+J0yV830bwbWQRXS:hYBkF/i24c4fva8DGPN0qyV83swbF

Score

N/A

Malware Config

Signatures

Files

ab885e61f26cf144245d72e1d58bcf23970761c9169449dced2d58a1f6f1a5fd
.exe windows x86

6919db1f6c898c35e533b54757328df5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
lstrcpyA
SetEvent
GetCommandLineA
DeleteFileA
GetStdHandle
GetFileAttributesA
HeapDestroy
GetStartupInfoA
GetModuleHandleA
CancelIo
Sleep
VirtualQueryEx
lstrlenW
GetProcessHeap
WriteConsoleW
GetDriveTypeW
WriteConsoleW
CopyFileA
GetPrivateProfileSectionW
WriteConsoleW

mmcndmgr

DllRegisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

cryptui

LocalEnrollNoDS
DllUnregisterServer
LocalEnroll
LocalEnroll
WizardFree
CryptUIWizBuildCTL
CryptUIWizImport
CryptUIStartCertMgr
CryptUIDlgViewContext
CryptUIWizExport
CryptUIWizDigitalSign
WizardFree
DllRegisterServer

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 764KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6919db1f6c898c35e533b54757328df5

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 764KB - Virtual size: 2.1MB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 112B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 764KB - Virtual size: 2.1MB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 112B