46e306c1049a9299a3b2c64b1867d6b954f2cb963cf7fb265b4dc3fce0316417 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46e306c1049a9299a3b2c64b1867d6b954f2cb963cf7fb265b4dc3fce0316417
Size

310KB
MD5

db692c0a768005242aa6a0b65c6f2626
SHA1

ebace4622ab5cced358d81f73ea4d554c2511cb4
SHA256

46e306c1049a9299a3b2c64b1867d6b954f2cb963cf7fb265b4dc3fce0316417
SHA512

d0ceafe4f17b33a8c091a906fb29f613a8c0705f0e93bcffcbc2e4021b0eefb28447f39870252b46d02233c3358cf04e621210e03273f2199a02079f7cb38cdf
SSDEEP

6144:VmqJxP6q0XE4WzFkkxsZVnmyUs+NvPdByrigZ6KsJQvGp3:DJxP6VmCLVnks+NvDyrdYKol

Score

N/A

Malware Config

Signatures

Files

46e306c1049a9299a3b2c64b1867d6b954f2cb963cf7fb265b4dc3fce0316417
.exe windows x86

f56551658c36cf807eff0e6339c43577

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
SetLocaleInfoW
VirtualFree
Beep
OpenMutexA
GetCommandLineA
GetPrivateProfileIntA
GetModuleHandleA
lstrcmpA
GetDiskFreeSpaceA
Beep
TlsGetValue
Beep
FormatMessageA
Beep
lstrcatA
Beep
Beep
DeleteFileW
SetCurrentDirectoryW
Beep
WriteConsoleW
GetFileSize
Beep
GetCurrentThreadId
VirtualProtect
CreateDirectoryA
Beep
SetThreadPriority

catsrvut

RegDBBackup
CGMIsAdministrator
RegDBRestore
StartMTSTOCOM

Sections

.TEXT
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 290KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE