e2ae42bdd9234c926a4be28f8687ebeaea9d394fecae2ea947eb61b957468504 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e2ae42bdd9234c926a4be28f8687ebeaea9d394fecae2ea947eb61b957468504
Size

816KB
MD5

4fe8b306982ae0e0a94d8ec5d2a42f49
SHA1

f9c7362296b3b35d8241ed492158262f32d1cff4
SHA256

e2ae42bdd9234c926a4be28f8687ebeaea9d394fecae2ea947eb61b957468504
SHA512

34c80719670d057f1345815fa503a9241310666bfa4b13d7abe9b415c99541a2717cd9eaa5e10b065412d71811d1a941a4510ef6ae2dd8a93b9b5324d7192aac
SSDEEP

24576:IcJ0GzqHbKa3nXckaHpCFBrorOIDBPD49Qp:9JLzqHbDXXraJyrtIt7J

Score

N/A

Malware Config

Signatures

Files

e2ae42bdd9234c926a4be28f8687ebeaea9d394fecae2ea947eb61b957468504
.exe windows x86

0fa82fbc3b67897ddb31cc61ff818408

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadPriority
GetFullPathNameW
GetModuleHandleA
WriteConsoleW
Beep
GetPrivateProfileIntA
Beep
Beep
SetLocaleInfoA
TlsGetValue
lstrcatA
GetModuleFileNameW
GetCurrentThreadId
SetCurrentDirectoryW
VirtualProtect
TlsSetValue
Beep
Beep
Beep
GetCommandLineA
Beep
ReleaseMutex
lstrlenW
Beep
VirtualQuery
FormatMessageA
Beep
Beep
DeleteFileW

catsrvut

CGMIsAdministrator
RegDBBackup
RegDBRestore
StartMTSTOCOM

Sections

.TEXT
Size: 15KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ