b356c47aaef211f8692a28976032e34115cc15c47cbd13b53190ce3c0e324eef

General

Target

b356c47aaef211f8692a28976032e34115cc15c47cbd13b53190ce3c0e324eef
Size

68KB
MD5

4a54664954e6e43b38df6762d2c07800
SHA1

ae034637a372311c2686bf67442ad7cc05009714
SHA256

b356c47aaef211f8692a28976032e34115cc15c47cbd13b53190ce3c0e324eef
SHA512

fb0b4188a97ad4296ca33363dcd3fdc07dcee48bae67a8f1379ff8d6018f0ef81bd6a170a9f9aa24b628afe7b46e9e12407e71616440782cd102e4ee227bf8e8
SSDEEP

1536:a2xZDU3JxaSIawepXfF9qmFUQDbp5yv2ZjBEwxwGzzMm2HkmGOv:dxNKJtrXtfF7PDbpseZjBErGzAmMkmG4

Score

N/A

Malware Config

Signatures

Files

b356c47aaef211f8692a28976032e34115cc15c47cbd13b53190ce3c0e324eef
.exe windows x86

fd1f3cc0d8c2498198de3e765781df14

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetLogicalDrives
ReadConsoleA
ReadConsoleA
CloseHandle
FindAtomW
ReleaseMutex
Sleep
PulseEvent
GetStartupInfoA
lstrlenA
GetDriveTypeA
GetStringTypeW
ReadConsoleA
HeapSize
LoadLibraryW
TlsGetValue
SearchPathA
GetLastError
GetPrivateProfileSectionA
DeleteFileW
VirtualProtectEx

uxtheme

DrawThemeBackground
CloseThemeData
GetWindowTheme
DrawThemeEdge
CloseThemeData
OpenThemeData
IsThemeActive
GetThemeTextMetrics
GetThemeColor
GetThemeTextExtent
SetWindowTheme
GetThemeSysSize
GetThemeBool

gpedit

DllCanUnloadNow
BrowseForGPO
DllGetClassObject
ExportRSoPData

Sections

.text
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 320B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 170B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fd1f3cc0d8c2498198de3e765781df14

Headers

File Characteristics

Imports

kernel32

uxtheme

gpedit

Sections

.text Size: 1024B - Virtual size: 784B

.data Size: 4KB - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 320B

.rsrc Size: 60KB - Virtual size: 60KB

.import Size: 512B - Virtual size: 289B

.orpc Size: 512B - Virtual size: 170B

.text
Size: 1024B - Virtual size: 784B

.data
Size: 4KB - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 320B

.rsrc
Size: 60KB - Virtual size: 60KB

.import
Size: 512B - Virtual size: 289B

.orpc
Size: 512B - Virtual size: 170B