ced1ed3c1200e0a694bf6934d0c376bdccca56838637031d862b3647a8cfd305 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ced1ed3c1200e0a694bf6934d0c376bdccca56838637031d862b3647a8cfd305
Size

390KB
MD5

0534eebc97db3b820ae77831b232ea80
SHA1

f49364403a9202e20f236381e28ebb491244669c
SHA256

ced1ed3c1200e0a694bf6934d0c376bdccca56838637031d862b3647a8cfd305
SHA512

33ad1a6516d6a75e54209d542ff605d71d838f7ccc7dcc46471a352c0b926d6a0d8f9a431d51aa24a10119ab147924f76c89de6245390b875a4b9723a8c6e69e
SSDEEP

12288:KASoWglH9ePzXptJt3JjsAwycJHnQl2BmHHHHHH01:tS/zXJt3Jjs1elQ1

Score

N/A

Malware Config

Signatures

Files

ced1ed3c1200e0a694bf6934d0c376bdccca56838637031d862b3647a8cfd305
.exe windows x86

df6aef30e22ef23c96297fac787deb60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadConsoleA
GetDiskFreeSpaceA
FindResourceA
lstrcatW
GetLastError
Heap32First
CreateEventW
GetDiskFreeSpaceA
HeapReAlloc
lstrcpyW
CloseHandle
DeviceIoControl
SetEnvironmentVariableA
HeapCreate
LoadLibraryA
ReadFileEx
InterlockedDecrement
GetPrivateProfileIntA
GetStringTypeW
InterlockedIncrement
VirtualQuery

adsldpc

ADsExecuteSearch
ADsDeleteClassDefinition
ADsCloseSearchHandle
ADsEnumAttributes

uxtheme

GetThemeTextExtent
OpenThemeData
GetWindowTheme
DrawThemeEdge
GetThemeBool
GetThemeColor
GetThemeSysSize
CloseThemeData
IsThemeActive
DrawThemeBackground
CloseThemeData
GetThemeTextMetrics
SetWindowTheme
SetWindowTheme

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 385KB - Virtual size: 385KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ