b7a506805a308a8bc36099e171ab1e8bc4bd058d60c0749232f15be4457539b3

General

Target

b7a506805a308a8bc36099e171ab1e8bc4bd058d60c0749232f15be4457539b3
Size

771KB
MD5

0c0d4533a04105b37de67fee1fddcb78
SHA1

93eb6fbdfc4913387842e3e6e9b95f86e8613a21
SHA256

b7a506805a308a8bc36099e171ab1e8bc4bd058d60c0749232f15be4457539b3
SHA512

2e4c58822e7116723340f2163ff80da1dbe051b7b13368b633c8171adc026766b9e1a532cac0496c5d48616863f3b4895b5f1e467ce22cc52dccc2ed2c64c623
SSDEEP

12288:+8L+pt6TnQGlIkzHqUVKCnbkDQxFRu4hnHRk5a+GySCpQscGaUQqLuNeOj0qDa7F:+8Go3IChVKsYDORu4paSCvvnCeDqOI

Score

N/A

Malware Config

Signatures

Files

b7a506805a308a8bc36099e171ab1e8bc4bd058d60c0749232f15be4457539b3
.exe windows x86

31cfabaea6824190544d907b2988f367

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapDestroy
SetEvent
CancelIo
WriteConsoleW
AddAtomW
DeleteFileA
VirtualQueryEx
GetStartupInfoA
GetDriveTypeW
CopyFileA
GetCommandLineA
lstrlenW
WriteConsoleW
VirtualProtect
Sleep
GetPrivateProfileSectionW
lstrcpyA
WriteConsoleW
GetProcessHeap
GetModuleHandleA
GetFileAttributesA

mmcndmgr

DllRegisterServer
DllGetClassObject
DllRegisterServer
DllCanUnloadNow

uxtheme

OpenThemeData
SetWindowTheme
GetThemeBool
DrawThemeBackground
CloseThemeData
GetThemeColor
GetWindowTheme
GetThemeTextMetrics
GetThemeSysSize
IsThemeActive
CloseThemeData
GetThemeTextExtent
DrawThemeEdge

Sections

.text
Size: 1024B - Virtual size: 855B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 765KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

31cfabaea6824190544d907b2988f367

Headers

File Characteristics

Imports

kernel32

mmcndmgr

uxtheme

Sections

.text Size: 1024B - Virtual size: 855B

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 765KB - Virtual size: 2.1MB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 112B

.text
Size: 1024B - Virtual size: 855B

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 765KB - Virtual size: 2.1MB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 112B