156b2a929bd66255fd7c962e6d9cec5fa2abd5d2e730c272d76ebeaac52d7c3f

General

Target

156b2a929bd66255fd7c962e6d9cec5fa2abd5d2e730c272d76ebeaac52d7c3f
Size

65KB
MD5

6f2c5808b456b0bac9363c36289fb570
SHA1

77390be200ecfd2106d2fab9d570482591fe9109
SHA256

156b2a929bd66255fd7c962e6d9cec5fa2abd5d2e730c272d76ebeaac52d7c3f
SHA512

8103ea6e5a6ae2c033d459bb9f8bcf16cf0290dc375cdb22dc961590f79529de65357436139740298112c24a178b1bfe6c7940272fd23c1f030ef8db302772af
SSDEEP

1536:sYqAAFG02NE73tQs/yttY7InIsjajEvv:sYqD4BEz3/IW7sjB

Score

N/A

Malware Config

Signatures

Files

156b2a929bd66255fd7c962e6d9cec5fa2abd5d2e730c272d76ebeaac52d7c3f
.exe windows x86

f1f33b8e78de17e8ca0d434516c9455c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetDriveTypeA
GetLogicalDrives
ReleaseMutex
ReadConsoleA
LoadLibraryW
PulseEvent
TlsGetValue
VirtualProtectEx
HeapSize
Sleep
ReadConsoleA
ReadConsoleA
FindAtomW
GetStringTypeW
lstrlenA
GetLastError
DeleteFileW
SearchPathA
GetPrivateProfileSectionA
CloseHandle
GetStartupInfoA

uxtheme

CloseThemeData
IsThemeActive
CloseThemeData
OpenThemeData
GetThemeBool
GetThemeTextMetrics
GetThemeSysSize
GetThemeColor
GetWindowTheme
SetWindowTheme
GetThemeTextExtent
DrawThemeEdge
DrawThemeBackground

gpedit

DllGetClassObject
BrowseForGPO
DllCanUnloadNow
ExportRSoPData

Sections

.text
Size: 1024B - Virtual size: 772B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 288B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 170B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f1f33b8e78de17e8ca0d434516c9455c

Headers

File Characteristics

Imports

kernel32

uxtheme

gpedit

Sections

.text Size: 1024B - Virtual size: 772B

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 512B - Virtual size: 288B

.rsrc Size: 60KB - Virtual size: 60KB

.import Size: 512B - Virtual size: 136B

.orpc Size: 512B - Virtual size: 170B

.text
Size: 1024B - Virtual size: 772B

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 512B - Virtual size: 288B

.rsrc
Size: 60KB - Virtual size: 60KB

.import
Size: 512B - Virtual size: 136B

.orpc
Size: 512B - Virtual size: 170B