535a4b70e2aa6713cf61e2a1a4c6a5e0be0275cad58721faaace04a30bedf853

General

Target

535a4b70e2aa6713cf61e2a1a4c6a5e0be0275cad58721faaace04a30bedf853
Size

772KB
MD5

007dea8a5fb83c27ea4f1688d79ddc33
SHA1

25903771ec6da5d13f929ec0fa53ea5ba198e2f9
SHA256

535a4b70e2aa6713cf61e2a1a4c6a5e0be0275cad58721faaace04a30bedf853
SHA512

7c7feb0b76909937770a6435e029caca575ae8911a716db3059687349fad57dbf1911022d23d9318b6594f2d5366e1aa222933988d7ab943bdd27f221c483e42
SSDEEP

24576:LvVojCHBmXcvh7YKPCAnVoxfS3HQYxIO:L9vYXcvVFCYefaVI

Score

N/A

Malware Config

Signatures

Files

535a4b70e2aa6713cf61e2a1a4c6a5e0be0275cad58721faaace04a30bedf853
.exe windows x86

e269c057a916423e5e949e0536f7e1c2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualQueryEx
GetPrivateProfileSectionW
GetCommandLineA
GetModuleHandleA
GetStdHandle
WriteConsoleW
CancelIo
GetStartupInfoA
Sleep
lstrcpyA
SetEvent
GetFileAttributesA
HeapDestroy
CopyFileA
DeleteFileA
VirtualProtect
GetDriveTypeW
GetProcessHeap
WriteConsoleW
WriteConsoleW
lstrlenW

mmcndmgr

DllGetClassObject
DllCanUnloadNow
DllRegisterServer
DllRegisterServer

cryptui

LocalEnrollNoDS
CryptUIWizImport
DllRegisterServer
CryptUIWizExport
LocalEnroll
LocalEnroll
CryptUIDlgViewContext
WizardFree
CryptUIWizBuildCTL
CryptUIStartCertMgr
DllUnregisterServer
CryptUIWizDigitalSign
WizardFree

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 765KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e269c057a916423e5e949e0536f7e1c2

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 765KB - Virtual size: 2.1MB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 765KB - Virtual size: 2.1MB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B