9197433ee1c2e3bcef5012d9041f2ea605290f32c9707df34bee58fa50c5f971

General

Target

9197433ee1c2e3bcef5012d9041f2ea605290f32c9707df34bee58fa50c5f971
Size

117KB
MD5

0fd3621827eeacd85388f3e8043e4b98
SHA1

8280dd0255227b7e3d22ab8df49d6da3e148dfc5
SHA256

9197433ee1c2e3bcef5012d9041f2ea605290f32c9707df34bee58fa50c5f971
SHA512

b760f03318b88815c3e3a956eb1869c1b5a0bee7688ad1bc7e949fcf8daa426a6debe1e221800e327b7f4fa1fc6ee114095708fb7afa8f9d18071232fb5ee41a
SSDEEP

3072:AKgHaFKwxAbSZSMxnUF5xR1aBowqIMHE8vdOxZSe:AKqnIUSwMxnUFrRUBowqDE8vdmZS

Score

N/A

Malware Config

Signatures

Files

9197433ee1c2e3bcef5012d9041f2ea605290f32c9707df34bee58fa50c5f971
.exe windows x86

156bfd4ac422f37db781dd59435b7bfb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

Sleep
GetStartupInfoA
GetProcessHeap
CopyFileA
VirtualQueryEx
SetEvent
WriteConsoleW
lstrcpyA
HeapDestroy
GetModuleHandleA
DeleteFileA
GetPrivateProfileSectionW
WriteConsoleW
VirtualProtect
GetFileAttributesA
GetCommandLineA
GetDriveTypeW
WriteConsoleW
CancelIo
GetStdHandle
lstrlenW

mmcndmgr

DllGetClassObject
DllRegisterServer
DllCanUnloadNow
DllRegisterServer

cryptui

CryptUIWizImport
LocalEnrollNoDS
LocalEnroll
WizardFree
WizardFree
DllUnregisterServer
LocalEnroll
DllRegisterServer
CryptUIWizExport
CryptUIDlgViewContext
CryptUIWizBuildCTL
CryptUIWizDigitalSign
CryptUIStartCertMgr

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

156bfd4ac422f37db781dd59435b7bfb

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 96B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 96B