6b35efa1da4a6ab2d7f3402383d635207d363dad9a70c7ed751997bd89b3f6e1

General

Target

6b35efa1da4a6ab2d7f3402383d635207d363dad9a70c7ed751997bd89b3f6e1
Size

393KB
MD5

796e54504503c337ece614d6fa0a1ef0
SHA1

e46c57194d6be14107bd1751599c4bd974c97b17
SHA256

6b35efa1da4a6ab2d7f3402383d635207d363dad9a70c7ed751997bd89b3f6e1
SHA512

489148fc368938849866a112210830dfdf7b61144ae87100d99585797c089b9e80c2d870f78471037d77dcd714de5660dcff58a9a3bc58a09c781cf2bd20bf35
SSDEEP

12288:CnkaIfdyvnRXDKmQ7FNJO4GJ6KAkA1HzwDKQ:CrxpmNBO4GJ9Ak4H

Score

N/A

Malware Config

Signatures

Files

6b35efa1da4a6ab2d7f3402383d635207d363dad9a70c7ed751997bd89b3f6e1
.exe windows x86

0c0b8459fcce6d80c27a43610c999a59

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
WriteConsoleW
WriteConsoleW
CreatePipe
DeleteFileA
lstrcpyA
GetPriorityClass
GetStdHandle
GetProcessHeap
lstrlenW
ResumeThread
GetCommandLineA
DisconnectNamedPipe
WriteConsoleW
HeapDestroy
GetCurrentDirectoryA
GetStartupInfoA
VirtualProtect
CopyFileA
GetFileAttributesW
SetEvent

mmcndmgr

DllRegisterServer
DllUnregisterServer
DllUnregisterServer
DllRegisterServer

shell32

ShellAboutA
SHGetDiskFreeSpaceA
StrChrA
DuplicateIcon
DllUnregisterServer
ExtractIconA
SHFree
SHGetMalloc
ShellMessageBoxA
DragFinish
SHGetSettings
DragAcceptFiles
DragQueryFileA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 385KB - Virtual size: 888KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 151B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0c0b8459fcce6d80c27a43610c999a59

Headers

File Characteristics

Imports

kernel32

mmcndmgr

shell32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 264B

.rsrc Size: 385KB - Virtual size: 888KB

.rdata Size: 512B - Virtual size: 151B

.impdata Size: 512B - Virtual size: 136B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 264B

.rsrc
Size: 385KB - Virtual size: 888KB

.rdata
Size: 512B - Virtual size: 151B

.impdata
Size: 512B - Virtual size: 136B