d8a75bb4f0e690042b794f82ddbf291f7228ef26351b720a2583b58c51d6004a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d8a75bb4f0e690042b794f82ddbf291f7228ef26351b720a2583b58c51d6004a
Size

816KB
MD5

c7f7326573c017f37682ff147490bba5
SHA1

0620253220c75dc4ae8805823e3677415fdc41ee
SHA256

d8a75bb4f0e690042b794f82ddbf291f7228ef26351b720a2583b58c51d6004a
SHA512

e8ca96f2ce8528f3cb02fafa0df6554edc819a4f5e54a62b2846c2385b3be7e0d21e48ba11d5382bffdb0082999176a6da215f361d4b1e882247459215fe7f40
SSDEEP

12288:+1It9g6d7CYGX1GP5Qv+mUUo9GXeL1tYgHu5TrO/CAlGc8M7FKLmWv:+Kt9VCYGXoR9JLwZ5sPdI

Score

N/A

Malware Config

Signatures

Files

d8a75bb4f0e690042b794f82ddbf291f7228ef26351b720a2583b58c51d6004a
.exe windows x86

ed8b051d00653f118726c76a2cfaa79d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCurrentDirectoryW
Beep
Beep
FormatMessageA
Beep
Beep
GetCurrentThreadId
Beep
SetLocaleInfoW
GetFullPathNameW
GetCommandLineA
lstrcmpA
Beep
VirtualProtect
GetModuleFileNameW
Beep
GetModuleHandleA
TlsGetValue
GetPrivateProfileIntA
TlsSetValue
DeleteFileW
lstrcatA
ReleaseMutex
Beep
SetThreadPriority
Beep
VirtualQuery
WriteConsoleW
Beep

catsrvut

RegDBBackup
StartMTSTOCOM
CGMIsAdministrator
RegDBRestore

Sections

.TEXT
Size: 15KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ