ec82fb31b8872c55a0ee6dca3c897cda6151793609d80a61f3129d70a2d59d11

General

Target

ec82fb31b8872c55a0ee6dca3c897cda6151793609d80a61f3129d70a2d59d11
Size

122KB
MD5

646bf00bee15a54e780b8513fe8cabc0
SHA1

0a82a43ba5ebf9c44068616d0ffc3212a14d05a2
SHA256

ec82fb31b8872c55a0ee6dca3c897cda6151793609d80a61f3129d70a2d59d11
SHA512

fb266f5ec9bba0dd67ca226d25bda09ef0bcac4a703c11f56676363080cb7b0c02819c2d307ef0c2d8c23a6c663e494164ebac094d5c04dc46a101d9ade09aac
SSDEEP

3072:6Ipj3bcgZz+0Qut+Lou7uLkjkb+c8DJDPZBcI8Q6MxMFt1:tjYbcuuLKBZiI8Q1xML1

Score

N/A

Malware Config

Signatures

Files

ec82fb31b8872c55a0ee6dca3c897cda6151793609d80a61f3129d70a2d59d11
.exe windows x86

57547a74cc866e70d9dac6a54838ca8e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtectEx
PulseEvent
lstrlenA
ReleaseMutex
GetDriveTypeA
GetPrivateProfileSectionA
FindAtomW
DeleteFileW
Sleep
GetStartupInfoA
GetStringTypeW
CloseHandle
ReadConsoleA
HeapSize
GetLastError
SearchPathA
LoadLibraryW
ReadConsoleA
TlsGetValue
ReadConsoleA
GetLogicalDrives

uxtheme

GetWindowTheme
GetThemeBool
DrawThemeEdge
IsThemeActive
SetWindowTheme
GetThemeTextExtent
CloseThemeData
DrawThemeBackground
GetThemeColor
GetThemeSysSize
OpenThemeData
GetThemeTextMetrics
CloseThemeData

gpedit

BrowseForGPO
DllCanUnloadNow
ExportRSoPData
DllGetClassObject

Sections

.text
Size: 1024B - Virtual size: 772B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 320B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 170B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

57547a74cc866e70d9dac6a54838ca8e

Headers

File Characteristics

Imports

kernel32

uxtheme

gpedit

Sections

.text Size: 1024B - Virtual size: 772B

.data Size: 4KB - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 320B

.rsrc Size: 114KB - Virtual size: 114KB

.import Size: 512B - Virtual size: 136B

.orpc Size: 512B - Virtual size: 170B

.text
Size: 1024B - Virtual size: 772B

.data
Size: 4KB - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 320B

.rsrc
Size: 114KB - Virtual size: 114KB

.import
Size: 512B - Virtual size: 136B

.orpc
Size: 512B - Virtual size: 170B