49b52c44c4bf7cd2ae50ba2792dd53d26dcf7679ad317a21726290b70bfc236d

General

Target

49b52c44c4bf7cd2ae50ba2792dd53d26dcf7679ad317a21726290b70bfc236d
Size

773KB
MD5

a115e035100b09a022a91fcc3db37eb0
SHA1

38c7a13d2de95146293daf5602a7fcab3d763e1d
SHA256

49b52c44c4bf7cd2ae50ba2792dd53d26dcf7679ad317a21726290b70bfc236d
SHA512

1f87df249bdaf3d9efcce6aabe06eedf042efb81ff369fabbfb13964ee09e60f5b0ea3a1ef8970ca46900156e153c512b3112500fedbad14c886b992d29745b3
SSDEEP

12288:ZLlL9r8ySuNolEabXhHk9YRh77ibhSwSVHikRJBdnrsTM3a8vOVOGn3NUsSCmUOd:xL8yiRIY/idfoUucAG3NUsS9UBlj

Score

N/A

Malware Config

Signatures

Files

49b52c44c4bf7cd2ae50ba2792dd53d26dcf7679ad317a21726290b70bfc236d
.exe windows x86

e9780817692c09c9419745c87fb47e3b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStdHandle
GetCommandLineA
GetStartupInfoA
lstrlenW
GetModuleHandleA
GetFileAttributesW
GetCurrentDirectoryA
CreatePipe
GetPriorityClass
HeapDestroy
WriteConsoleW
CopyFileA
DeleteFileA
SetEvent
DisconnectNamedPipe
GetProcessHeap
WriteConsoleW
lstrcpyA
WriteConsoleW
ResumeThread
VirtualProtect

mmcndmgr

DllUnregisterServer
DllRegisterServer
DllRegisterServer
DllUnregisterServer

shell32

DragFinish
DragQueryFileA
DragAcceptFiles
StrChrA
SHGetSettings
ShellMessageBoxA
ExtractIconA
SHFree
SHGetMalloc
SHGetDiskFreeSpaceA
DllUnregisterServer
DuplicateIcon
ShellAboutA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 765KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 151B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 512B - Virtual size: 117B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e9780817692c09c9419745c87fb47e3b

Headers

File Characteristics

Imports

kernel32

mmcndmgr

shell32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 264B

.rsrc Size: 765KB - Virtual size: 2.1MB

.rdata Size: 512B - Virtual size: 151B

.impdata Size: 512B - Virtual size: 117B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 264B

.rsrc
Size: 765KB - Virtual size: 2.1MB

.rdata
Size: 512B - Virtual size: 151B

.impdata
Size: 512B - Virtual size: 117B