9be2de5207193ca2ad60b93440e285d8aadd4b2c3f19a68f441450733788209c

General

Target

9be2de5207193ca2ad60b93440e285d8aadd4b2c3f19a68f441450733788209c
Size

292KB
MD5

65b4d037a5c8e65661a5ce0250320c80
SHA1

a565a809c41d75f352b735ff19f7aa1e46b8c4e4
SHA256

9be2de5207193ca2ad60b93440e285d8aadd4b2c3f19a68f441450733788209c
SHA512

3171e82936f7a7309a1d09ba42979ba58abfd941041a9b6622243f498aa9dc94f903f1789ada61985becbb61e13bb78d67b22c50a1d70e7971396a9b581d37ae
SSDEEP

6144:IIOA3+Efe6ibtiYFlPx8RgD27ghuvrat+oq1LGbJ+BXmsjbx:IIOCbfXibEgD27FvrG+ow6bJ+BX7Hx

Score

N/A

Malware Config

Signatures

Files

9be2de5207193ca2ad60b93440e285d8aadd4b2c3f19a68f441450733788209c
.exe windows x86

9ade6941ba04bf5b7a5519ff04a159a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetProcessHeap
GetFileAttributesW
CreatePipe
SetEvent
DisconnectNamedPipe
lstrlenW
GetCurrentDirectoryA
GetCommandLineA
WriteConsoleW
CopyFileA
WriteConsoleW
HeapDestroy
VirtualProtect
lstrcpyA
DeleteFileA
GetStdHandle
GetModuleHandleA
GetPriorityClass
WriteConsoleW
GetStartupInfoA
ResumeThread

mmcndmgr

DllRegisterServer
DllUnregisterServer
DllRegisterServer
DllUnregisterServer

shell32

ShellMessageBoxA
DllUnregisterServer
DragQueryFileA
SHGetDiskFreeSpaceA
ExtractIconA
DuplicateIcon
StrChrA
SHGetMalloc
ShellAboutA
DragAcceptFiles
SHGetSettings
SHFree
DragFinish

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 285KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 195B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9ade6941ba04bf5b7a5519ff04a159a4

Headers

File Characteristics

Imports

kernel32

mmcndmgr

shell32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 264B

.rsrc Size: 285KB - Virtual size: 284KB

.rdata Size: 512B - Virtual size: 177B

.impdata Size: 512B - Virtual size: 195B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 264B

.rsrc
Size: 285KB - Virtual size: 284KB

.rdata
Size: 512B - Virtual size: 177B

.impdata
Size: 512B - Virtual size: 195B