c19ee7046659fbc524f94e7512614099da00a0f3884e46d5466cd11675e9c4a6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c19ee7046659fbc524f94e7512614099da00a0f3884e46d5466cd11675e9c4a6
Size

816KB
MD5

778f511c56980c43cbd713b36f01b191
SHA1

06805aa288fde4d41925ba80ddc7c7de3244eac5
SHA256

c19ee7046659fbc524f94e7512614099da00a0f3884e46d5466cd11675e9c4a6
SHA512

9ca49acdc654b2f2c72f085130fd5034ef834ea055ac1e415a73de572ba1f5e54c7aac8fdd776b258d3a54f329323115242bb4750374de63659a609d5934d082
SSDEEP

24576:aqvqqUucJuz/CfPZtJ+w0hkmXZ3N+R9PXRZ:fvqTeQPZtJ+1hVGB

Score

N/A

Malware Config

Signatures

Files

c19ee7046659fbc524f94e7512614099da00a0f3884e46d5466cd11675e9c4a6
.exe windows x86

0999b028a47e93b34ac4aa8d6c4bb934

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
GetFullPathNameW
VirtualProtect
Beep
DeleteFileW
TlsSetValue
Beep
Beep
GetCommandLineA
ReleaseMutex
VirtualQuery
SetThreadPriority
SetLocaleInfoW
SetCurrentDirectoryW
Beep
Beep
Beep
GetModuleHandleA
TlsGetValue
Beep
WriteConsoleW
lstrcmpA
lstrcatA
GetPrivateProfileIntA
Beep
FormatMessageA
GetModuleFileNameW
GetCurrentThreadId
Beep

catsrvut

CGMIsAdministrator
StartMTSTOCOM
RegDBRestore
RegDBBackup

Sections

.TEXT
Size: 15KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ