0f1d79b7bebfb7bcfab9823392e986f982d869ba36928bd5f3d61af536ec5a00

General

Target

0f1d79b7bebfb7bcfab9823392e986f982d869ba36928bd5f3d61af536ec5a00
Size

104KB
MD5

8fe5df8c2a121a573062e4eb8ea1e3e2
SHA1

e26e99a7ccd69a198419c785a5d394c94d19ef73
SHA256

0f1d79b7bebfb7bcfab9823392e986f982d869ba36928bd5f3d61af536ec5a00
SHA512

ed65560375b4a030686cccfddb48a1693b48601a733db00fa0b7104300b7eb7c3fb1872a8b2a314cb98fd42642fb0a112d838531d0917e1c27865a0216f0f222
SSDEEP

3072:Lx78Ll6UnxKC6FWhd9aP6YsaS+LQXyjP3a:F7QDxvwWhdgCYspXu3

Score

N/A

Malware Config

Signatures

Files

0f1d79b7bebfb7bcfab9823392e986f982d869ba36928bd5f3d61af536ec5a00
.exe windows x86

a54a1b228944683726c5c15a3545fff1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

uxtheme

GetThemeFont
GetCurrentThemeName
IsThemeActive
DrawThemeEdge
CloseThemeData
SetWindowTheme
GetThemeInt
GetThemeBool
GetThemeEnumValue
GetWindowTheme
GetThemeColor
GetThemeTextMetrics

kernel32

lstrcpynW
GetProcessHeap
QueryDosDeviceW
ReplaceFileA
CreateMutexW
FileTimeToSystemTime
FindNextFileA
GetBinaryTypeA
DeleteFileW
WriteConsoleW
WriteFile
CreateFileA
ReadFile
GetProcAddress
GetVersion
OpenJobObjectA
GetModuleHandleA
CopyFileA
GetDriveTypeW
CreateHardLinkA
GetLocaleInfoW
WaitForSingleObjectEx
lstrcatA
GetFileSize

wtsapi32

WTSVirtualChannelPurgeInput
WTSFreeMemory
WTSSendMessageA
WTSEnumerateSessionsA
WTSWaitSystemEvent
WTSVirtualChannelOpen
WTSTerminateProcess
WTSSetUserConfigA
WTSEnumerateProcessesA
WTSRegisterSessionNotification
WTSOpenServerA
WTSDisconnectSession
WTSVirtualChannelWrite
WTSUnRegisterSessionNotification
WTSQuerySessionInformationA

dhcpcsvc

DhcpEnumClasses
McastApiCleanup

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a54a1b228944683726c5c15a3545fff1

Headers

File Characteristics

Imports

uxtheme

kernel32

wtsapi32

dhcpcsvc

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 144B

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 144B