f0d1638f5efd093a534c83689d794a113e0b7a1ef4b4c01e946223abae608671

General

Target

f0d1638f5efd093a534c83689d794a113e0b7a1ef4b4c01e946223abae608671
Size

807KB
MD5

09d26f57537e5695db0993a3a9f5be47
SHA1

89fa2ba0edd330ab9c04e8bb3eb3459906aaf33c
SHA256

f0d1638f5efd093a534c83689d794a113e0b7a1ef4b4c01e946223abae608671
SHA512

ff1eabe1a3cde236e514faad76e4e96d5c45a5246db4f21cc6b44bbe3504b0ed3083ea7874b3c44abd9705ae76b460ab74960f184b3cfd0c09e0ffd69eb36008
SSDEEP

24576:RfNckRjt5ZsKVRGMvV4KLlF40ISPLy0TDRyVoEa8ydlP5k:RVVRywRvV4uVJO0TDcVoEaf5

Score

N/A

Malware Config

Signatures

Files

f0d1638f5efd093a534c83689d794a113e0b7a1ef4b4c01e946223abae608671
.exe windows x86

f611d8e95f5d3cb50ca80394bc9070aa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadConsoleA
DeleteFileW
TlsGetValue
GetPrivateProfileSectionA
PulseEvent
SearchPathA
GetLogicalDrives
VirtualProtectEx
LoadLibraryW
ReadConsoleA
GetStringTypeW
GetStartupInfoA
CloseHandle
GetDriveTypeA
Sleep
GetLastError
FindAtomW
lstrlenA
ReadConsoleA
HeapSize
ReleaseMutex

uxtheme

GetThemeTextMetrics
DrawThemeEdge
GetWindowTheme
GetThemeSysSize
OpenThemeData
CloseThemeData
CloseThemeData
GetThemeTextExtent
IsThemeActive
SetWindowTheme
GetThemeBool
DrawThemeBackground
GetThemeColor

gpedit

ExportRSoPData
DllGetClassObject
DllCanUnloadNow
BrowseForGPO

Sections

.text
Size: 1024B - Virtual size: 772B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1.4MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 802KB - Virtual size: 801KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 170B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f611d8e95f5d3cb50ca80394bc9070aa

Headers

File Characteristics

Imports

kernel32

uxtheme

gpedit

Sections

.text Size: 1024B - Virtual size: 772B

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 512B - Virtual size: 1.4MB

.rsrc Size: 802KB - Virtual size: 801KB

.import Size: 512B - Virtual size: 136B

.orpc Size: 512B - Virtual size: 170B

.text
Size: 1024B - Virtual size: 772B

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 512B - Virtual size: 1.4MB

.rsrc
Size: 802KB - Virtual size: 801KB

.import
Size: 512B - Virtual size: 136B

.orpc
Size: 512B - Virtual size: 170B