796906ee786255c22ad46213270d1d746cef33021295a85482751913726cd6a2

General

Target

796906ee786255c22ad46213270d1d746cef33021295a85482751913726cd6a2
Size

91KB
MD5

7c5382bc28fc657ad5f9465a316adc50
SHA1

d8a451878d32db170ba3f72cb4913aa49b751b60
SHA256

796906ee786255c22ad46213270d1d746cef33021295a85482751913726cd6a2
SHA512

c4b0c2223d8c4642b762dc7db8e6f47eb754501269d1a232cef33effbc2042716bf46bfa55e5a6f048e4ec5cae89a3fad3a463f5773619b0dc5c08a17e452be5
SSDEEP

1536:ousXVXVrOAXr0TYMDXnSLi4fazp+V8zx/s1HXH005Fg3ttegQGjWoYNv5rLBEoEA:oprOXHXIzoB9sx300Y3ttzrYNv5/BEOB

Score

N/A

Malware Config

Signatures

Files

796906ee786255c22ad46213270d1d746cef33021295a85482751913726cd6a2
.exe windows x86

1912ccefd6a239ad9059fc05dfa83ab4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetFileAttributesA
WriteConsoleW
GetProcessHeap
CopyFileA
WriteConsoleW
GetCommandLineA
HeapDestroy
VirtualProtect
VirtualQueryEx
lstrlenW
Sleep
GetModuleHandleA
SetEvent
GetStartupInfoA
GetPrivateProfileSectionW
GetDriveTypeW
lstrcpyA
DeleteFileA
CancelIo
AddAtomW
WriteConsoleW

mmcndmgr

DllCanUnloadNow
DllRegisterServer
DllGetClassObject
DllRegisterServer

uxtheme

GetThemeSysSize
CloseThemeData
DrawThemeBackground
GetWindowTheme
GetThemeBool
IsThemeActive
CloseThemeData
SetWindowTheme
GetThemeTextExtent
GetThemeTextMetrics
OpenThemeData
GetThemeColor
DrawThemeEdge

Sections

.text
Size: 1024B - Virtual size: 855B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1912ccefd6a239ad9059fc05dfa83ab4

Headers

File Characteristics

Imports

kernel32

mmcndmgr

uxtheme

Sections

.text Size: 1024B - Virtual size: 855B

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 110KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 112B

.text
Size: 1024B - Virtual size: 855B

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 110KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 112B