4452f95cdfac960f4cbeafa330689f6f0af80fdaa56e9c4f0f82c5d45b6381a1

General

Target

4452f95cdfac960f4cbeafa330689f6f0af80fdaa56e9c4f0f82c5d45b6381a1
Size

68KB
MD5

803e987ab921309fde8f2232b186c130
SHA1

3567aebddffdd83ae6b1055d737b95e2c5b0c5b6
SHA256

4452f95cdfac960f4cbeafa330689f6f0af80fdaa56e9c4f0f82c5d45b6381a1
SHA512

5af3c7f3b27ca2ee4c1d82d4855e386cc16fd3e2a489feab3c987ed9f7f482fecfe29f7af58a9b2f18eb94da48235f60a1648aeab45f45558ad7eb02a3dc42ed
SSDEEP

1536:bx/F8KqI+6FvqxrcPUXa6ip3ZUUHpLLZjyR4TcMSFXYlWiD4Av:dOd6Fv0IUXlOpNHpLLJyR44FA4K

Score

N/A

Malware Config

Signatures

Files

4452f95cdfac960f4cbeafa330689f6f0af80fdaa56e9c4f0f82c5d45b6381a1
.exe windows x86

4806f2399c9a4f61a6ac37a448b67327

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrlenA
GetPrivateProfileSectionA
HeapSize
GetLastError
GetStartupInfoA
GetLogicalDrives
ReadConsoleA
CloseHandle
FindAtomW
TlsGetValue
PulseEvent
VirtualProtectEx
Sleep
LoadLibraryW
SearchPathA
ReleaseMutex
GetDriveTypeA
ReadConsoleA
DeleteFileW
GetStringTypeW
ReadConsoleA

uxtheme

GetThemeTextExtent
CloseThemeData
GetThemeBool
GetThemeColor
SetWindowTheme
GetWindowTheme
DrawThemeBackground
DrawThemeEdge
IsThemeActive
GetThemeTextMetrics
GetThemeSysSize
CloseThemeData
OpenThemeData

gpedit

DllGetClassObject
ExportRSoPData
DllCanUnloadNow
BrowseForGPO

Sections

.text
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 320B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4806f2399c9a4f61a6ac37a448b67327

Headers

File Characteristics

Imports

kernel32

uxtheme

gpedit

Sections

.text Size: 1024B - Virtual size: 1024B

.data Size: 4KB - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 320B

.rsrc Size: 60KB - Virtual size: 60KB

.import Size: 512B - Virtual size: 289B

.orpc Size: 512B - Virtual size: 136B

.text
Size: 1024B - Virtual size: 1024B

.data
Size: 4KB - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 320B

.rsrc
Size: 60KB - Virtual size: 60KB

.import
Size: 512B - Virtual size: 289B

.orpc
Size: 512B - Virtual size: 136B