a21b8c465ef56b3de9a7c096b43e5d9541984c841b68085418ed8ed4623665e9

General

Target

a21b8c465ef56b3de9a7c096b43e5d9541984c841b68085418ed8ed4623665e9
Size

83KB
MD5

63f682c1ed82a495d04c356bbb7c32e0
SHA1

7808a8578dd9f35542f68dfd3a01f0890c43e729
SHA256

a21b8c465ef56b3de9a7c096b43e5d9541984c841b68085418ed8ed4623665e9
SHA512

a8f4e64dd4f363342497867d1ab81ca338209629b10772f27d415eb4efe87863d61763de8ce269925703045ce497c9f244179a3211330c5b446f65edee131e73
SSDEEP

1536:4gOx648wZes/CP5Yy+ajLasjewftWn9X4:4gp9meyU2ynjLVfftW9

Score

N/A

Malware Config

Signatures

Files

a21b8c465ef56b3de9a7c096b43e5d9541984c841b68085418ed8ed4623665e9
.exe windows x86

09e93d4bc3ce9f1bc4381cf838f81045

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GlobalFlags
GetFileAttributesW
GetPrivateProfileIntA
GetDriveTypeA
CreateEventA
VirtualProtectEx
RemoveDirectoryA
CreateDirectoryW
FindVolumeClose
GetStdHandle
GetPrivateProfileSectionA
GetCurrentProcess
DeviceIoControl
LoadLibraryA
GlobalLock
GetStringTypeA
GetCurrentThread
GetFileAttributesW
GetVersionExA
HeapFree
CloseHandle

shell32

DragAcceptFiles
StrChrA
SHGetMalloc
ShellAboutA
DllUnregisterServer
ExtractIconA
ShellMessageBoxA
DuplicateIcon
DllUnregisterServer
DragQueryFileA
SHFree
DragFinish
SHGetSettings

ntmarta

AccConvertAclToAccess
AccConvertSDToAccess
AccFreeIndexArray
AccGetExplicitEntries

uxtheme

CloseThemeData

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09e93d4bc3ce9f1bc4381cf838f81045

Headers

File Characteristics

Imports

kernel32

shell32

ntmarta

uxtheme

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 508B

.rsrc Size: 73KB - Virtual size: 73KB

.import Size: 512B - Virtual size: 372B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 508B

.rsrc
Size: 73KB - Virtual size: 73KB

.import
Size: 512B - Virtual size: 372B