b8fecd056c8bea189b39db0b8f4838936900dff278b6bad9dfc381328d274f73

General

Target

b8fecd056c8bea189b39db0b8f4838936900dff278b6bad9dfc381328d274f73
Size

297KB
MD5

6931dd4aedc357be1447eec70ca81770
SHA1

3da7d7d009ab85c00db466a42141897dd641b12e
SHA256

b8fecd056c8bea189b39db0b8f4838936900dff278b6bad9dfc381328d274f73
SHA512

4778ac7e666c1423a4fa1872317660cd5214852f55330be9c4ad9e13ec231d2105b7de45571489f47bf1e0c31b9bb0d3877e3020a92b8350b03a83cb60a0e529
SSDEEP

6144:ut91wnVqOs8Q62vWA8ImuDqx0XeByETuIt4AJP:Y91iqh8JA8tuDNuBZuIvp

Score

N/A

Malware Config

Signatures

Files

b8fecd056c8bea189b39db0b8f4838936900dff278b6bad9dfc381328d274f73
.exe windows x86

908cab555fe9206dad715fa45db6d233

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadConsoleA
lstrlenA
ReadConsoleA
TlsGetValue
ReadConsoleA
FindAtomW
GetPrivateProfileSectionA
DeleteFileW
PulseEvent
GetLastError
ReleaseMutex
VirtualProtectEx
GetStartupInfoA
SearchPathA
CloseHandle
GetStringTypeW
Sleep
GetLogicalDrives
GetDriveTypeA
LoadLibraryW
HeapSize

uxtheme

GetThemeBool
GetThemeTextExtent
GetThemeColor
IsThemeActive
DrawThemeBackground
GetWindowTheme
GetThemeTextMetrics
CloseThemeData
DrawThemeEdge
SetWindowTheme
CloseThemeData
OpenThemeData
GetThemeSysSize

gpedit

DllGetClassObject
DllCanUnloadNow
ExportRSoPData
BrowseForGPO

Sections

.text
Size: 1024B - Virtual size: 772B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 288B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 291KB - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 170B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

908cab555fe9206dad715fa45db6d233

Headers

File Characteristics

Imports

kernel32

uxtheme

gpedit

Sections

.text Size: 1024B - Virtual size: 772B

.data Size: 2KB - Virtual size: 1KB

.rdata Size: 512B - Virtual size: 288B

.rsrc Size: 291KB - Virtual size: 291KB

.import Size: 512B - Virtual size: 136B

.orpc Size: 512B - Virtual size: 170B

.text
Size: 1024B - Virtual size: 772B

.data
Size: 2KB - Virtual size: 1KB

.rdata
Size: 512B - Virtual size: 288B

.rsrc
Size: 291KB - Virtual size: 291KB

.import
Size: 512B - Virtual size: 136B

.orpc
Size: 512B - Virtual size: 170B