598cc7b99f6ba071f0f4cba7faae703f1f7d96788f9bc4f20608ec923f17e7f4

General

Target

598cc7b99f6ba071f0f4cba7faae703f1f7d96788f9bc4f20608ec923f17e7f4
Size

65KB
MD5

0a56f92272bc47b6f5b423d307bda310
SHA1

02b52dc0e86496716ceffa3ac3ffa39e0c1285fb
SHA256

598cc7b99f6ba071f0f4cba7faae703f1f7d96788f9bc4f20608ec923f17e7f4
SHA512

f3eefd72f403fed39f5013f53b4e878a70e8f08832e2c0ef1eaa3e1d8e0de9742e6a3130f7d511ded14ecb04e8ab46a7692429275bd23595f3d772f5aa22bfa5
SSDEEP

1536:+dgVEunUSMjmXvbHUZgaQqAkiYoJUVmlYM/KUiiWeH:mgnUpWvbHUuaQzbvAmOHeH

Score

N/A

Malware Config

Signatures

Files

598cc7b99f6ba071f0f4cba7faae703f1f7d96788f9bc4f20608ec923f17e7f4
.exe windows x86

c99095238d9df37e91bd5e00a8fc1561

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcpyA
ResumeThread
GetStartupInfoA
GetPriorityClass
GetStdHandle
GetCurrentDirectoryA
WriteConsoleW
DisconnectNamedPipe
GetProcessHeap
DeleteFileA
SetEvent
HeapDestroy
CreatePipe
GetModuleHandleA
WriteConsoleW
GetCommandLineA
VirtualProtect
GetFileAttributesW
WriteConsoleW
lstrlenW
CopyFileA

mmcndmgr

DllCanUnloadNow
DllRegisterServer
DllGetClassObject
DllRegisterServer

cryptui

CryptUIWizImport
CryptUIWizDigitalSign
CryptUIWizBuildCTL
DllRegisterServer
CryptUIWizBuildCTL
CryptUIWizExport
LocalEnroll
LocalEnroll
CryptUIDlgViewContext
CryptUIStartCertMgr
WizardFree
WizardFree
DllUnregisterServer

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 195B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c99095238d9df37e91bd5e00a8fc1561

Headers

File Characteristics

Imports

kernel32

mmcndmgr

cryptui

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 264B

.rsrc Size: 58KB - Virtual size: 72KB

.rdata Size: 512B - Virtual size: 177B

.impdata Size: 512B - Virtual size: 195B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 264B

.rsrc
Size: 58KB - Virtual size: 72KB

.rdata
Size: 512B - Virtual size: 177B

.impdata
Size: 512B - Virtual size: 195B