98592897611399c3570f1889b954074570dc0940ac33aed910c30064a00c1fa6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98592897611399c3570f1889b954074570dc0940ac33aed910c30064a00c1fa6
Size

816KB
MD5

8ea78ee383606c166af148ae46142d5a
SHA1

5fe4aad6cd8e85f386d978b508354f52c9b2a774
SHA256

98592897611399c3570f1889b954074570dc0940ac33aed910c30064a00c1fa6
SHA512

4ecc9e81edb8dc497a22ff43c1a370054f73af1ccbec446b38aee52d5c03f193ce3294ca625ca2f1a26a77389fce541fc28abca2aa1b0ea3f107875b5de802c2
SSDEEP

24576:JbkIj7ufNfrNKgARUAVlOnLNiymTQyQbG:1kDEgAO+UyU

Score

N/A

Malware Config

Signatures

Files

98592897611399c3570f1889b954074570dc0940ac33aed910c30064a00c1fa6
.exe windows x86

66ad1a9e3aeaff1df14e5815f15a6130

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualQuery
DeleteFileW
Beep
WriteConsoleW
GetModuleFileNameW
TlsSetValue
TlsGetValue
GetFullPathNameW
GetCurrentThreadId
SetThreadPriority
SetLocaleInfoA
Beep
Beep
Beep
Beep
Beep
Beep
lstrlenW
GetCommandLineA
FormatMessageA
GetPrivateProfileIntA
SetCurrentDirectoryW
VirtualProtect
lstrcatA
ReleaseMutex
Beep
Beep
GetModuleHandleA
Beep

catsrvut

RegDBBackup
StartMTSTOCOM
RegDBRestore
CGMIsAdministrator

Sections

.TEXT
Size: 15KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ