6cb9f838b49f377fda917381a55e1170cf674102b76b1e514ffaccb6a82e9944 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6cb9f838b49f377fda917381a55e1170cf674102b76b1e514ffaccb6a82e9944
Size

816KB
MD5

cd135411a20096a49ae90c09081357dc
SHA1

2d781d31b71c031ad105639f2017f36591c8c434
SHA256

6cb9f838b49f377fda917381a55e1170cf674102b76b1e514ffaccb6a82e9944
SHA512

8f75d85e03450c277820bc875454cdc8000ef0d6a319cd9027db1b2cc8ee7191a29d4a9f4ac0d55180d0c9ecc57ab1953d69d3d80fff4a3de3c62a5e62cfdfc5
SSDEEP

12288:izDomLDFZyP4PcYTctV6l4SzplIvrQ3+djIps2e7Vm4oDAfNn/VSKtNlDzmUf:iz8mLnWM6VNSdqv0OdADThDWdSK3lTf

Score

N/A

Malware Config

Signatures

Files

6cb9f838b49f377fda917381a55e1170cf674102b76b1e514ffaccb6a82e9944
.exe windows x86

696014eff6d5969d93ede0f4b6f064b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageA
VirtualQuery
GetModuleHandleA
ReleaseMutex
Beep
TlsSetValue
Beep
DeleteFileW
Beep
SetLocaleInfoW
Beep
TlsGetValue
VirtualProtect
Beep
SetThreadPriority
Beep
Beep
GetFullPathNameW
Beep
lstrcmpA
GetPrivateProfileIntA
Beep
SetCurrentDirectoryW
OpenMutexA
GetCommandLineA
GetCurrentThreadId
lstrcatA
Beep
WriteConsoleW

catsrvut

StartMTSTOCOM
RegDBRestore
CGMIsAdministrator
RegDBBackup

Sections

.TEXT
Size: 15KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE