eb615e70c79528115a60c5190d67f78efda782c563fb1f5f57a070cc00c806b7

General

Target

eb615e70c79528115a60c5190d67f78efda782c563fb1f5f57a070cc00c806b7
Size

111KB
MD5

44c46133f5c87cf40b7cad14b018e700
SHA1

152e722041ec68c08da7d720c1e608a139ac26e1
SHA256

eb615e70c79528115a60c5190d67f78efda782c563fb1f5f57a070cc00c806b7
SHA512

c3ecabe8ff4c1761393c1b3935c82614d39b5ad6be7249da49be0bf877dd6388e8a0b55986a9bb3b3675bf7a1dcbd6d68bdca082aeeb173c3a988299e29f7525
SSDEEP

3072:Q4OK+VNCgWnTuDZRSBK/uwoTqAvFwf3MDeLEcX:Q4OVrSkmQAvWf+O

Score

N/A

Malware Config

Signatures

Files

eb615e70c79528115a60c5190d67f78efda782c563fb1f5f57a070cc00c806b7
.exe windows x86

aeabbf958d86c218493842c1339cac51

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStartupInfoA
lstrlenW
lstrcpyA
GetCommandLineA
GetDriveTypeW
GetProcessHeap
WriteConsoleW
VirtualProtect
WriteConsoleW
GetModuleHandleA
Sleep
DeleteFileA
GetFileAttributesW
CopyFileA
WriteConsoleW
VirtualQueryEx
GetPrivateProfileSectionW
SetEvent
CancelIo
HeapDestroy
GetStdHandle

mmcndmgr

DllRegisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

cryptui

CryptUIDlgViewContext
CryptUIWizDigitalSign
LocalEnroll
LocalEnrollNoDS
DllUnregisterServer
LocalEnroll
CryptUIWizExport
CryptUIWizImport
WizardFree
WizardFree
CryptUIStartCertMgr
DllRegisterServer
CryptUIWizBuildCTL

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aeabbf958d86c218493842c1339cac51

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 103KB - Virtual size: 103KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 103KB - Virtual size: 103KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B