d3e9b019616f604167a2d4b1d4ba8f0c0b24f155e25050f87ce38721d0e60238 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d3e9b019616f604167a2d4b1d4ba8f0c0b24f155e25050f87ce38721d0e60238
Size

816KB
MD5

c716a3449c99267b6dc141fe51b1ebd7
SHA1

4e325b16a06bafdbb6a82318c023b75defda4245
SHA256

d3e9b019616f604167a2d4b1d4ba8f0c0b24f155e25050f87ce38721d0e60238
SHA512

9d153ce19d7134648b1ee2d1552d92b0ff07e9ceb9aee1d5ebf744835a2a31c877929973cf23b50850f1174535b90bcb6e25abfac87271ec58187b747f5edba8
SSDEEP

24576:tWnfSpo+bRDEN4J+Bcw+lg0RadW/EOLbqV:40XlaWsIs

Score

N/A

Malware Config

Signatures

Files

d3e9b019616f604167a2d4b1d4ba8f0c0b24f155e25050f87ce38721d0e60238
.exe windows x86

eb2cdc64aaa32ef88c76aa51b86a4eb1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLocaleInfoW
GetModuleHandleA
WriteConsoleW
Beep
Beep
Beep
FormatMessageA
DeleteFileW
Beep
Beep
lstrcatA
OpenMutexA
Beep
SetThreadPriority
ReleaseMutex
GetFullPathNameW
VirtualProtect
GetCurrentThreadId
Beep
lstrcmpA
GetPrivateProfileIntA
SetCurrentDirectoryW
TlsGetValue
Beep
Beep
TlsSetValue
VirtualQuery
GetCommandLineA
Beep

catsrvut

StartMTSTOCOM
RegDBRestore
CGMIsAdministrator
RegDBBackup

Sections

.TEXT
Size: 15KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE