de637a08809b2dc46c0c1863ca6c1eafe079221f78508d4452ac41c02402e40a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de637a08809b2dc46c0c1863ca6c1eafe079221f78508d4452ac41c02402e40a
Size

296KB
MD5

ac74514bfd288888bc9065fa1421de64
SHA1

302861f8aa8a5f4b07226d6d711241ab43e2c08d
SHA256

de637a08809b2dc46c0c1863ca6c1eafe079221f78508d4452ac41c02402e40a
SHA512

8862c8187d10ba6cc83b6276b595028fa1c1b18444efa2ae328689cb8fd1f53b33295e076a1c64b633337489315942774a57b11d75993904eb04835e62d00394
SSDEEP

6144:geH4vk+RRSxqMRRB6rhr12S5YFyhfH0FH6bJvlVEOPm4Tc/U6cfY:geH4TsqMjclrEFyhfH0969vPv1w/UY

Score

N/A

Malware Config

Signatures

Files

de637a08809b2dc46c0c1863ca6c1eafe079221f78508d4452ac41c02402e40a
.exe windows x86

3b5d347509a6df6d776cf0e34eca32be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FindResourceW
ReadConsoleA
GetStringTypeW
GetPrivateProfileIntA
Heap32First
GetDiskFreeSpaceW
CloseHandle
SetEnvironmentVariableA
InterlockedDecrement
ExitProcess
GetLastError
HeapCreate
lstrcpyW
DeviceIoControl
lstrcatW
HeapReAlloc
CreateEventW
ReadFileEx
LoadLibraryA
InterlockedIncrement
GetDiskFreeSpaceW

adsldpc

ADsCloseSearchHandle
ADsDeleteClassDefinition
ADsExecuteSearch
ADsEnumAttributes

uxtheme

GetThemeBool
IsThemeActive
OpenThemeData
SetWindowTheme
CloseThemeData
GetThemeSysSize
DrawThemeEdge
CloseThemeData
GetThemeTextMetrics
GetThemeColor
DrawThemeBackground
GetThemeTextExtent
GetWindowTheme
SetWindowTheme

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 292KB - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ