432a9d814aaf6ee4579b26fae43d309fdfe39d515661fe931fa705a3e52b9fb6

General

Target

432a9d814aaf6ee4579b26fae43d309fdfe39d515661fe931fa705a3e52b9fb6
Size

311KB
MD5

6debed90a4cd7669dd0782d5d34612c0
SHA1

7f324d131b4054f01c6210e8ebb89c1571b5a0a3
SHA256

432a9d814aaf6ee4579b26fae43d309fdfe39d515661fe931fa705a3e52b9fb6
SHA512

5e948c2686e4113bf75d8e724bfcbdb6d3b8ab75a445ebcff6997ed8e405ebef92c0d33e40cb34709079a362328b147c486c5f474a395b998fbafc9667741534
SSDEEP

6144:PS/WYMRrJ8BUQSSgcn0AMTCK1vNDb1DZh1wr3kId9QdP7IvajD:PSuZ/83SG7mZvBxw4IXQdPSaj

Score

N/A

Malware Config

Signatures

Files

432a9d814aaf6ee4579b26fae43d309fdfe39d515661fe931fa705a3e52b9fb6
.exe windows x86

6c6b4971cc7aeb5635880a400362c73e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

RemoveDirectoryW
GlobalLock
GetModuleHandleA
GetPrivateProfileSectionA
CreateDirectoryW
GetCurrentProcess
GetStringTypeA
GetPrivateProfileIntA
LocalFlags
GetFileAttributesW
GetVersionExA
DeviceIoControl
GetFileAttributesW
GetStdHandle
FindClose
CloseHandle
CreateEventA
GetCurrentThread
VirtualProtectEx
SetLastError
HeapFree

shell32

ShellMessageBoxA
SHGetMalloc
DragAcceptFiles
DragQueryFileA
ExtractIconA
SHGetSettings
StrChrA
DragFinish
DllUnregisterServer
DuplicateIcon
SHFree
ShellAboutA
SHGetDiskFreeSpaceA

ntmarta

AccGetExplicitEntries
AccConvertSDToAccess
AccFreeIndexArray
AccConvertAclToAccess

uxtheme

CloseThemeData

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 302KB - Virtual size: 301KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c6b4971cc7aeb5635880a400362c73e

Headers

File Characteristics

Imports

kernel32

shell32

ntmarta

uxtheme

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 512B

.rsrc Size: 302KB - Virtual size: 301KB

.import Size: 512B - Virtual size: 372B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 512B

.rsrc
Size: 302KB - Virtual size: 301KB

.import
Size: 512B - Virtual size: 372B