3ea335eed7eb9dae4a1c12d2b608d297d709f374042223789497dddcd082eb7a

General

Target

3ea335eed7eb9dae4a1c12d2b608d297d709f374042223789497dddcd082eb7a
Size

799KB
MD5

63ed2c5205e1e22bf04db8bd6b1542e0
SHA1

909d51889a2ea25aa894f68a150b4cc785734202
SHA256

3ea335eed7eb9dae4a1c12d2b608d297d709f374042223789497dddcd082eb7a
SHA512

4a92f49803b7fc0312c9711e3f868532d7484d41c99a5fd9ded2865d471944fd5422bb2ee734d636d64fb3232db29804e6855a692dc0ca80708edc6caa926a17
SSDEEP

12288:sUfAcwmqD5jW2QaVeI5dUYdNOQcCntf2Iu2/8fECllAvDXmZmPuWvaMtfQs:TfAcwmy40Jd3dU6tW20fJllAvqfcx

Score

N/A

Malware Config

Signatures

Files

3ea335eed7eb9dae4a1c12d2b608d297d709f374042223789497dddcd082eb7a
.exe windows x86

abc069c17ace6247b1425f40df06de57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

RemoveDirectoryA
CreateDirectoryW
VirtualProtectEx
GlobalFlags
GetStringTypeA
GetStdHandle
GetFileAttributesW
GetPrivateProfileSectionA
FindVolumeClose
GetPrivateProfileIntA
GetVersionExA
LoadLibraryA
GetCurrentThread
CreateEventA
DeviceIoControl
HeapFree
GetCurrentProcess
CloseHandle
GetFileAttributesW
GetDriveTypeA
GlobalLock

shell32

ExtractIconA
DragFinish
DragQueryFileA
SHGetSettings
ShellMessageBoxA
SHFree
ShellAboutA
DllUnregisterServer
DllUnregisterServer
StrChrA
SHGetMalloc
DragAcceptFiles
DuplicateIcon

ntmarta

AccGetExplicitEntries
AccConvertSDToAccess
AccConvertAclToAccess
AccFreeIndexArray

uxtheme

CloseThemeData

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 789KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

abc069c17ace6247b1425f40df06de57

Headers

File Characteristics

Imports

kernel32

shell32

ntmarta

uxtheme

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 508B

.rsrc Size: 789KB - Virtual size: 2.1MB

.import Size: 512B - Virtual size: 372B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 508B

.rsrc
Size: 789KB - Virtual size: 2.1MB

.import
Size: 512B - Virtual size: 372B