5ddb0b6969422f1b5bf3d034667b846d6769a7d5a78d877615d068d8f9926793 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ddb0b6969422f1b5bf3d034667b846d6769a7d5a78d877615d068d8f9926793
Size

816KB
MD5

bff4282fbcede4073c4ef9aa0e57b159
SHA1

e3b9e4ed48d90e1915fc7c6ab5d139f2cb1f3c4b
SHA256

5ddb0b6969422f1b5bf3d034667b846d6769a7d5a78d877615d068d8f9926793
SHA512

5fe46a84141bb1dd957bc8732de24806f06c5d841836cbac6cb6b773899947e978c0161b34cbfc67b01925a47fe96c6912e8557e9ea2e1ff5a5102710c83c224
SSDEEP

24576:rLQ0vToF/LKrifEXDQw+QIW5N+uyK7l0EzqAi7Wduf+3X0r:QkcFDKrVR+o5N+ubRVNdu2X0r

Score

N/A

Malware Config

Signatures

Files

5ddb0b6969422f1b5bf3d034667b846d6769a7d5a78d877615d068d8f9926793
.exe windows x86

62b3632bec8bb358c2c39efcaa8a55e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
SetThreadPriority
SetLocaleInfoA
Beep
GetCommandLineA
Beep
Beep
FormatMessageA
Beep
GetModuleHandleA
GetPrivateProfileIntA
GetModuleFileNameW
VirtualQuery
Beep
TlsSetValue
Beep
lstrcatA
Beep
Beep
ReleaseMutex
GetFullPathNameW
GetCurrentThreadId
Beep
Beep
DeleteFileW
TlsGetValue
SetCurrentDirectoryW
VirtualProtect
WriteConsoleW

catsrvut

StartMTSTOCOM
CGMIsAdministrator
RegDBBackup
RegDBRestore

Sections

.text
Size: 15KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ