fea40a91901ee68c905868a5b8d95304898d9a4f7397482e41b321e6603f5f44

General

Target

fea40a91901ee68c905868a5b8d95304898d9a4f7397482e41b321e6603f5f44
Size

113KB
MD5

80e4b9238504085eac80ea495c276e13
SHA1

634a23b5790d16871f5a1e2b689654cf7152705a
SHA256

fea40a91901ee68c905868a5b8d95304898d9a4f7397482e41b321e6603f5f44
SHA512

b645f20c24918759c6f17084de4b1a9923a67ae27682bdfcef3b4dec42aad9edbbf9a0739c3cf6b492fe7d0a4d355c2e9fb8669760815b55e6106cdb0d7aa303
SSDEEP

3072:dIewFrNQ70fEaN648TyliBBsFFA+f4f01YW:era708aN6LGFFAK44Y

Score

N/A

Malware Config

Signatures

Files

fea40a91901ee68c905868a5b8d95304898d9a4f7397482e41b321e6603f5f44
.exe windows x86

8aa06b71bb8c834d9a3c091d72ac849b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcpyA
WriteConsoleW
WriteConsoleW
GetModuleHandleA
VirtualProtect
GetPrivateProfileSectionW
CancelIo
VirtualQuery
WriteConsoleW
AddAtomW
GetProcessHeap
Sleep
CopyFileA
GetCommandLineA
DeleteFileA
GetFileAttributesA
HeapDestroy
SetEvent
GetDriveTypeW
lstrlenW
GetStartupInfoA

mmcndmgr

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllRegisterServer

uxtheme

GetThemeSysSize
GetThemeBool
GetThemeColor
DrawThemeBackground
GetWindowTheme
IsThemeActive
DrawThemeEdge
CloseThemeData
GetThemeTextMetrics
SetWindowTheme
OpenThemeData
GetThemeTextExtent
CloseThemeData

Sections

.text
Size: 1024B - Virtual size: 819B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 274B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.export
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8aa06b71bb8c834d9a3c091d72ac849b

Headers

File Characteristics

Imports

kernel32

mmcndmgr

uxtheme

Sections

.text Size: 1024B - Virtual size: 819B

.data Size: 2KB - Virtual size: 12KB

.rdata Size: 512B - Virtual size: 274B

.rsrc Size: 108KB - Virtual size: 107KB

.rdata Size: 512B - Virtual size: 100B

.export Size: 512B - Virtual size: 144B

.text
Size: 1024B - Virtual size: 819B

.data
Size: 2KB - Virtual size: 12KB

.rdata
Size: 512B - Virtual size: 274B

.rsrc
Size: 108KB - Virtual size: 107KB

.rdata
Size: 512B - Virtual size: 100B

.export
Size: 512B - Virtual size: 144B