bdb2d29c2bff0bae5d16c201c8028725011e615aa477b3fd425f6db99c94d42a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdb2d29c2bff0bae5d16c201c8028725011e615aa477b3fd425f6db99c94d42a
Size

816KB
MD5

bf1800606888260989228cd881c8a12a
SHA1

85147502f5002e248c5ef5f05dd096f5b6006250
SHA256

bdb2d29c2bff0bae5d16c201c8028725011e615aa477b3fd425f6db99c94d42a
SHA512

7b726f876990c6a3e6da1c257dc214c018e51ff0c5257c5516e3b726f1aaa1a85e2aef2631ac79d3072b2335320055b4d713eb4d6d84f7acfb2e9c166d02d535
SSDEEP

12288:GrLQOwkZEuaerQxI0nzd47rDFWxSozLgBHmR3fWZUpCyMRGdBu+5JKOLxhWyyshe:GEkS4QROqXzL+HQPWSdTDKOfWnaQfNR

Score

N/A

Malware Config

Signatures

Files

bdb2d29c2bff0bae5d16c201c8028725011e615aa477b3fd425f6db99c94d42a
.exe windows x86

2adda9d95c764570b9c08643d70553f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
DeleteFileW
SetThreadPriority
Beep
Beep
SetCurrentDirectoryW
GetPrivateProfileIntA
Beep
TlsGetValue
lstrlenW
SetLocaleInfoA
VirtualProtect
Beep
TlsSetValue
Beep
Beep
GetModuleHandleA
ReleaseMutex
Beep
Beep
GetFullPathNameW
VirtualQuery
FormatMessageA
GetModuleFileNameW
Beep
GetCurrentThreadId
WriteConsoleW
Beep
GetCommandLineA

catsrvut

StartMTSTOCOM
RegDBRestore
CGMIsAdministrator
RegDBBackup

Sections

.TEXT
Size: 15KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ