8a9a1537bbc76b251bfb119661495f63e82bd3bafa571a1215717e7a672d24dc

General

Target

8a9a1537bbc76b251bfb119661495f63e82bd3bafa571a1215717e7a672d24dc
Size

311KB
MD5

37f894d5f7cc2d56d08915e089619760
SHA1

57c2b70f7737faa0b6c5ce7e447e3657181476f4
SHA256

8a9a1537bbc76b251bfb119661495f63e82bd3bafa571a1215717e7a672d24dc
SHA512

a06c337ac3ed722b34be21f7c5ab1612005f8020704ddd7720c5c7fff09e6d17f372ab09ba06debbf6ababd595f87c0151fb11fc8d56802c7b6f867a24a6c61e
SSDEEP

6144:CURHL+AgtPDnx/N5y+eTJMfDe1QuDeJ98G6FGL8ekio0Tg8a:fBLhgtP7xi7TJGDPJuNFGL8eXo0Tf

Score

N/A

Malware Config

Signatures

Files

8a9a1537bbc76b251bfb119661495f63e82bd3bafa571a1215717e7a672d24dc
.exe windows x86

f6747b889624f330237be6db5641501b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileIntA
GetFileAttributesW
GetStdHandle
HeapFree
CreateEventA
GlobalFlags
GetCurrentProcess
DeviceIoControl
GetVersionExA
RemoveDirectoryA
CloseHandle
GlobalLock
VirtualProtectEx
FindVolumeClose
GetCurrentThread
LoadLibraryA
GetDriveTypeA
GetStringTypeA
CreateDirectoryW
GetFileAttributesW
GetPrivateProfileSectionA

shell32

ShellMessageBoxA
DragFinish
DragAcceptFiles
ExtractIconA
DllUnregisterServer
SHGetMalloc
SHGetSettings
DragQueryFileA
StrChrA
ShellAboutA
SHFree
DllUnregisterServer
DuplicateIcon

ntmarta

AccGetExplicitEntries
AccFreeIndexArray
AccConvertSDToAccess
AccConvertAclToAccess

uxtheme

CloseThemeData

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 302KB - Virtual size: 301KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f6747b889624f330237be6db5641501b

Headers

File Characteristics

Imports

kernel32

shell32

ntmarta

uxtheme

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 508B

.rsrc Size: 302KB - Virtual size: 301KB

.import Size: 512B - Virtual size: 372B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 508B

.rsrc
Size: 302KB - Virtual size: 301KB

.import
Size: 512B - Virtual size: 372B