d0b5893bfaad89a72de2b2e40b301868e559b3d64650b3c41dc17a9c799b0836

General

Target

d0b5893bfaad89a72de2b2e40b301868e559b3d64650b3c41dc17a9c799b0836
Size

135KB
MD5

6a49e7ec886a4b2037d1a9d4ba4405c0
SHA1

b704971ad764232b3243a2f4309537cf86178beb
SHA256

d0b5893bfaad89a72de2b2e40b301868e559b3d64650b3c41dc17a9c799b0836
SHA512

1b5d7f4f9ad351ada59f3dfa9b270834eea674e81b5b743b3ee8abce96369409985a55e90e0be4343322d898f187b3c6a0a29f59866ca09d1b1090d776cf1935
SSDEEP

3072:iGPOI39V0+h+nMovxNJlPWtA44SHD8r87ilFWfz0Lx:hOIv1cXN7PIAKHD8rDYILx

Score

N/A

Malware Config

Signatures

Files

d0b5893bfaad89a72de2b2e40b301868e559b3d64650b3c41dc17a9c799b0836
.exe windows x86

37edc09a77d48d0df58ed09d35056fa3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
ReadConsoleA
CloseHandle
DeleteFileA
GetVolumePathNameA
lstrlenA
ReadConsoleA
LoadLibraryW
SetLastError
TlsGetValue
FindAtomW
PulseEvent
GetStringTypeW
GetDriveTypeA
GetStartupInfoA
GetLastError
HeapFree
ReadConsoleA
GetPrivateProfileSectionA
GetProcessVersion
GetProcessHeap

clbcatq

SetupOpen
CheckMemoryGates
DllGetClassObject
ComPlusMigrate
DllGetClassObject
SetupOpen
CheckMemoryGates
ComPlusMigrate
CheckMemoryGates
SetupOpen
ComPlusMigrate
CheckMemoryGates
CheckMemoryGates

gpedit

ExportRSoPData
DllGetClassObject
DllCanUnloadNow
BrowseForGPO

Sections

.text
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 320B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.import
Size: 512B - Virtual size: 193B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

37edc09a77d48d0df58ed09d35056fa3

Headers

File Characteristics

Imports

kernel32

clbcatq

gpedit

Sections

.text Size: 1024B - Virtual size: 1024B

.data Size: 3KB - Virtual size: 3KB

.rdata Size: 512B - Virtual size: 320B

.rsrc Size: 128KB - Virtual size: 128KB

.orpc Size: 512B - Virtual size: 289B

.import Size: 512B - Virtual size: 193B

.text
Size: 1024B - Virtual size: 1024B

.data
Size: 3KB - Virtual size: 3KB

.rdata
Size: 512B - Virtual size: 320B

.rsrc
Size: 128KB - Virtual size: 128KB

.orpc
Size: 512B - Virtual size: 289B

.import
Size: 512B - Virtual size: 193B