ada5a4670382081fc419ec82447599de4f74e673a0d2004a47775995a9d7e035

General

Target

ada5a4670382081fc419ec82447599de4f74e673a0d2004a47775995a9d7e035
Size

799KB
MD5

46a07910c2fd2e3b3d6685fad7744d4d
SHA1

c417d0a92d234896baf296d261a0c032a5e9f8a5
SHA256

ada5a4670382081fc419ec82447599de4f74e673a0d2004a47775995a9d7e035
SHA512

9de39bb2096a321d84be81ff4f2161af357394d56624960170431d44c93e45c6008aefb2ebd9be759ba704b42f12ca33573aa97cecb81876831295d8b6cac95d
SSDEEP

12288:3UfAcwmqD5jW2QaVeI5dUYdNOQcCntf2Iu2/8fECllAvDXmZmPuWvaMtfQs:kfAcwmy40Jd3dU6tW20fJllAvqfcx

Score

N/A

Malware Config

Signatures

Files

ada5a4670382081fc419ec82447599de4f74e673a0d2004a47775995a9d7e035
.exe windows x86

b736c0f6a1b4e575bc3c4cae3da192a0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileIntA
RemoveDirectoryA
GetFileAttributesW
GetCurrentProcess
LoadLibraryA
FindVolumeClose
CloseHandle
GetPrivateProfileSectionA
GetStdHandle
CreateEventA
GetStringTypeA
GetDriveTypeA
GetVersionExA
GlobalLock
HeapFree
GlobalFlags
GetFileAttributesW
DeviceIoControl
GetCurrentThread
CreateDirectoryW
VirtualProtectEx

shell32

DllUnregisterServer
DragAcceptFiles
ExtractIconA
SHFree
DuplicateIcon
DragFinish
DragQueryFileA
SHGetMalloc
StrChrA
ShellMessageBoxA
SHGetSettings
ShellAboutA
DllUnregisterServer

ntmarta

AccConvertSDToAccess
AccConvertAclToAccess
AccGetExplicitEntries
AccFreeIndexArray

uxtheme

CloseThemeData

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 789KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b736c0f6a1b4e575bc3c4cae3da192a0

Headers

File Characteristics

Imports

kernel32

shell32

ntmarta

uxtheme

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 508B

.rsrc Size: 789KB - Virtual size: 2.1MB

.import Size: 512B - Virtual size: 372B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 508B

.rsrc
Size: 789KB - Virtual size: 2.1MB

.import
Size: 512B - Virtual size: 372B