1d1737ce02a3d1a4fb4ab789be596b29e232be16bc6240294e234d7b380d47b5

General

Target

1d1737ce02a3d1a4fb4ab789be596b29e232be16bc6240294e234d7b380d47b5
Size

118KB
MD5

52d07828eb7544357d031a14a8f38210
SHA1

6a04b6c0e4a5f61e57239a9409a96d3490f1d6d5
SHA256

1d1737ce02a3d1a4fb4ab789be596b29e232be16bc6240294e234d7b380d47b5
SHA512

8177d4d54eb3f751b384dc67ea98cce5842346bbfad8129107bcfb934fd7c4077662ce92c89615aa00aef4b5c5fa39c1c338a80d2760a198b20f2ce86f1587d2
SSDEEP

3072:NAE/1+cLdKk40O23G9Bd+mbBUm5nOv0uB6ZgcRg1UOy:xBdO22t+hmlKB6Odly

Score

N/A

Malware Config

Signatures

Files

1d1737ce02a3d1a4fb4ab789be596b29e232be16bc6240294e234d7b380d47b5
.exe windows x86

c65ab5e66db99e176756cbaf50b45549

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualQueryEx
HeapDestroy
ResumeThread
GetPrivateProfileSectionW
VirtualProtect
GetStartupInfoA
GetCommandLineA
GetDriveTypeW
WriteConsoleW
lstrlenW
GetProcessHeap
CopyFileA
GetStdHandle
WriteConsoleW
GetFileAttributesW
lstrcpyA
Sleep
WriteConsoleW
DeleteFileA
SetEvent
GetModuleHandleA

mmcndmgr

DllRegisterServer
DllCanUnloadNow
DllGetClassObject
DllRegisterServer

cryptui

WizardFree
CryptUIWizExport
CryptUIDlgViewContext
LocalEnrollNoDS
DllRegisterServer
CryptUIWizBuildCTL
CryptUIWizDigitalSign
CryptUIWizImport
DllUnregisterServer
CryptUIStartCertMgr
WizardFree
LocalEnroll
LocalEnroll

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c65ab5e66db99e176756cbaf50b45549

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B