b234f9ca9d292a43cfda6c195995982f1701627922598f2e31f0e2d4174aaeb0

General

Target

b234f9ca9d292a43cfda6c195995982f1701627922598f2e31f0e2d4174aaeb0
Size

292KB
MD5

0e893fabc6bb97e32ae29e5e58cfb85c
SHA1

d286d8305abc2c2ddae219c39ec505a3d23ef9cf
SHA256

b234f9ca9d292a43cfda6c195995982f1701627922598f2e31f0e2d4174aaeb0
SHA512

abcbdc0be20e9e40013cbd74157e81b94cc47e50feacc4474191d352ceee70cc56fc3f015abb73f51e317aa547d11c6f3951cba86cf4dc6cf024eebea98fa9f7
SSDEEP

6144:D+ue2+6SYzHJbz3TEn/2KhVk22lsTNIXjZMDH1F5AmZ4Et:D+uH+2DlTYk2j2XtMr1zAmZD

Score

N/A

Malware Config

Signatures

Files

b234f9ca9d292a43cfda6c195995982f1701627922598f2e31f0e2d4174aaeb0
.exe windows x86

ac8bd685eeb1da8a6dbc27cd4bdf9b2b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetFileAttributesW
VirtualQueryEx
GetProcessHeap
GetCommandLineA
WriteConsoleW
WriteConsoleW
GetStartupInfoA
GetModuleHandleA
GetPrivateProfileSectionW
lstrcpyA
SetEvent
VirtualProtect
GetDriveTypeW
Sleep
DeleteFileA
WriteConsoleW
lstrlenW
CancelIo
GetStdHandle
CopyFileA
HeapDestroy

mmcndmgr

DllGetClassObject
DllRegisterServer
DllCanUnloadNow
DllRegisterServer

cryptui

LocalEnroll
DllRegisterServer
CryptUIWizImport
WizardFree
CryptUIWizBuildCTL
LocalEnrollNoDS
WizardFree
CryptUIWizExport
LocalEnroll
CryptUIStartCertMgr
CryptUIDlgViewContext
DllUnregisterServer
CryptUIWizDigitalSign

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac8bd685eeb1da8a6dbc27cd4bdf9b2b

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 284KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 80B

.text
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 284KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 80B