293b624cf5feef63a8c96e4be7b8c48d1ca2119615427c2084ca56b47cf69366 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

293b624cf5feef63a8c96e4be7b8c48d1ca2119615427c2084ca56b47cf69366
Size

816KB
MD5

ab0124b2b66a9d615d5d780783425993
SHA1

5365cc7778092c1f786f9449454479c57b1eb43e
SHA256

293b624cf5feef63a8c96e4be7b8c48d1ca2119615427c2084ca56b47cf69366
SHA512

4b1ada6cd06af671b8aa63a27d4d88266892f1d9d77cc6c4e5683773137cdf502efcefb98bc91a0e54fb479683bc92f5d61862d9d3bf89dbed8c236ff43dd1f3
SSDEEP

12288:3KJxSyz/mFCt1/yoJECUkeZYz126XUX4T31hkBwDftwul7EgY+6DSu6CR6K2tM+:3KJTz/AG/eiz1x1JDftpl/gzRJ2C+

Score

N/A

Malware Config

Signatures

Files

293b624cf5feef63a8c96e4be7b8c48d1ca2119615427c2084ca56b47cf69366
.exe windows x86

b73674f7c0933b189ee8f04aec384ad3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
Beep
VirtualQuery
lstrcatA
GetPrivateProfileIntA
GetCommandLineA
Beep
GetFullPathNameW
SetLocaleInfoA
ReleaseMutex
TlsSetValue
Beep
Beep
SetCurrentDirectoryW
Beep
Beep
FormatMessageA
Beep
Beep
TlsGetValue
SetThreadPriority
VirtualProtect
GetModuleHandleA
GetModuleFileNameW
DeleteFileW
lstrlenW
Beep
WriteConsoleW
GetCurrentThreadId

catsrvut

RegDBRestore
RegDBBackup
StartMTSTOCOM
CGMIsAdministrator

Sections

.text
Size: 15KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ