bd942aaab323e69e660fc01089d96f5714be4d9c2ec2798e5db146e9291c6be9

General

Target

bd942aaab323e69e660fc01089d96f5714be4d9c2ec2798e5db146e9291c6be9
Size

120KB
MD5

52d176dd2dec908681d471a75bed2b90
SHA1

cfa366705889e352ac532859f1233b4978984af3
SHA256

bd942aaab323e69e660fc01089d96f5714be4d9c2ec2798e5db146e9291c6be9
SHA512

cc8d15b224baece78ed1cca8e5fc621eacd0e3a9ab39e0b20a4ccba59cda7542e8b17ccd2c5a7a6106f5dab91dbacbd13366bba5c4cb1a3c2a510088e272f250
SSDEEP

1536:L6djbG8iZH57b29oe/NeZViyoEl4J/ps+VUtNSPDB015FlJFbWkGIN1bmtgeslMa:L6uicA6rtNjlJF80W2s8F6L3nyxOE

Score

N/A

Malware Config

Signatures

Files

bd942aaab323e69e660fc01089d96f5714be4d9c2ec2798e5db146e9291c6be9
.exe windows x86

c2147c94b2d6060888abc66ca2a61914

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WriteConsoleW
VirtualProtect
DisconnectNamedPipe
GetStartupInfoA
WriteConsoleW
lstrcpyA
SetEvent
GetCurrentDirectoryA
CopyFileA
DeleteFileA
lstrlenW
GetPriorityClass
WriteConsoleW
HeapDestroy
GetFileAttributesW
GetModuleHandleA
CreatePipe
ResumeThread
GetCommandLineA
GetProcessHeap
GetStdHandle

mmcndmgr

DllGetClassObject
DllCanUnloadNow
DllRegisterServer
DllRegisterServer

cryptui

CryptUIWizDigitalSign
WizardFree
DllRegisterServer
CryptUIWizBuildCTL
CryptUIWizExport
CryptUIDlgViewContext
WizardFree
CryptUIWizImport
CryptUIStartCertMgr
CryptUIWizBuildCTL
DllUnregisterServer
LocalEnroll
LocalEnroll

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 195B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c2147c94b2d6060888abc66ca2a61914

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 3KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 3KB

.rdata Size: 512B - Virtual size: 264B

.rsrc Size: 111KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 177B

.impdata Size: 512B - Virtual size: 195B

.text
Size: 3KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 3KB

.rdata
Size: 512B - Virtual size: 264B

.rsrc
Size: 111KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 177B

.impdata
Size: 512B - Virtual size: 195B