eddd8f0e85260285c2871acc6374339fff24f5fc4948fae8346ab7d664b14cb5

General

Target

eddd8f0e85260285c2871acc6374339fff24f5fc4948fae8346ab7d664b14cb5
Size

789KB
MD5

5c88279a87fbdd7782cde37e085ed6e0
SHA1

578f2718441bf468e526ff23b502906fa9fbd48b
SHA256

eddd8f0e85260285c2871acc6374339fff24f5fc4948fae8346ab7d664b14cb5
SHA512

6857c0b32c07c2f75f03b333d9ec3c79513ddb671bf0e0475207e8d4dfa188a8972dcb2d711f53fb7a630e32300edfd217bbe041368f3465197d3b3df5cd9ddf
SSDEEP

24576:PtA9PTCrFqshvF9SC1DvMzyYqvlbAuHLCr:Pt4CrFNuaBHLC

Score

N/A

Malware Config

Signatures

Files

eddd8f0e85260285c2871acc6374339fff24f5fc4948fae8346ab7d664b14cb5
.exe windows x86

0a37900be5dc930c2a11aa9063758ed0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadConsoleA
HeapSize
LoadLibraryW
GetLastError
GetStartupInfoA
ReadConsoleA
VirtualProtectEx
lstrlenA
Sleep
ReleaseMutex
DeleteFileW
FindAtomW
PulseEvent
GetPrivateProfileSectionA
GetLogicalDrives
SearchPathA
GetDriveTypeA
GetStringTypeW
CloseHandle
TlsGetValue
ReadConsoleA

uxtheme

GetThemeBool
CloseThemeData
DrawThemeEdge
GetThemeColor
IsThemeActive
CloseThemeData
SetWindowTheme
OpenThemeData
DrawThemeBackground
GetWindowTheme
GetThemeSysSize
GetThemeTextExtent
GetThemeTextMetrics

gpedit

BrowseForGPO
DllCanUnloadNow
DllGetClassObject
ExportRSoPData

Sections

.text
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1.4MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 781KB - Virtual size: 781KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 170B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0a37900be5dc930c2a11aa9063758ed0

Headers

File Characteristics

Imports

kernel32

uxtheme

gpedit

Sections

.text Size: 1024B - Virtual size: 784B

.data Size: 4KB - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 1.4MB

.rsrc Size: 781KB - Virtual size: 781KB

.import Size: 512B - Virtual size: 289B

.orpc Size: 512B - Virtual size: 170B

.text
Size: 1024B - Virtual size: 784B

.data
Size: 4KB - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 1.4MB

.rsrc
Size: 781KB - Virtual size: 781KB

.import
Size: 512B - Virtual size: 289B

.orpc
Size: 512B - Virtual size: 170B