ae8c191199599e133cac67a50307f96e4b878e4ba04ef2f63cdabb17a39f2542

General

Target

ae8c191199599e133cac67a50307f96e4b878e4ba04ef2f63cdabb17a39f2542
Size

112KB
MD5

5a768a70151584deef9a4cd29ff56eb9
SHA1

7b8761fb0cd6ab1fdc2a7a3bb3a3bf5115e3a826
SHA256

ae8c191199599e133cac67a50307f96e4b878e4ba04ef2f63cdabb17a39f2542
SHA512

645e50abbf1221689bd2ac25cf99fbda10b0ec89070a23f2dd78a5e680e009ee6799ce42d7b8968a10243cff87beda66e3b8be09fea27b50de1297d1b85c7ee0
SSDEEP

3072:3XVn8iDW2JpOxR7eAN1NdO/9T2/Qx5lCAuD2klHByblbfCQQPf:3l8qW2J8yA/NdO/kox5lCN2klHByblbi

Score

N/A

Malware Config

Signatures

Files

ae8c191199599e133cac67a50307f96e4b878e4ba04ef2f63cdabb17a39f2542
.exe windows x86

80b2021890495e7434cb7154b457efa2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

uxtheme

GetThemeFont
GetCurrentThemeName
IsThemeActive
DrawThemeEdge
CloseThemeData
SetWindowTheme
GetThemeInt
GetThemeBool
GetThemeEnumValue
GetWindowTheme
GetThemeColor
GetThemeTextMetrics

kernel32

lstrcpynW
GetProcessHeap
QueryDosDeviceW
ReplaceFileA
CreateMutexW
SystemTimeToFileTime
FindNextFileA
GetBinaryTypeA
DeleteFileW
WriteConsoleW
WriteFile
CreateFileA
ReadFile
GetProcAddress
GetVersion
OpenJobObjectA
GetModuleHandleA
CopyFileA
GetDriveTypeW
CreateHardLinkA
GetLocaleInfoW
WaitForSingleObjectEx
lstrcatA
GetFileSize

wtsapi32

WTSVirtualChannelPurgeInput
WTSFreeMemory
WTSSendMessageA
WTSEnumerateSessionsA
WTSWaitSystemEvent
WTSVirtualChannelOpen
WTSTerminateProcess
WTSSetUserConfigA
WTSEnumerateProcessesA
WTSRegisterSessionNotification
WTSOpenServerA
WTSDisconnectSession
WTSVirtualChannelWrite
WTSUnRegisterSessionNotification
WTSQuerySessionInformationA

dhcpcsvc

DhcpEnumClasses
McastApiCleanup

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

80b2021890495e7434cb7154b457efa2

Headers

File Characteristics

Imports

uxtheme

kernel32

wtsapi32

dhcpcsvc

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 144B

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 144B