0ae8ac1c4633e3480d759f418b3380923e454865cfc7675c3855c589e15c4f34 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ae8ac1c4633e3480d759f418b3380923e454865cfc7675c3855c589e15c4f34
Size

816KB
MD5

1dc616be8ecbe316544e14a07cf9b129
SHA1

f975027b70d8ebea0f971b11bf4155f912d6073f
SHA256

0ae8ac1c4633e3480d759f418b3380923e454865cfc7675c3855c589e15c4f34
SHA512

f185db280423a74f568e58094a56e73794e27a0879203ebcc73ef7e8210243b46911ff0b760678024783fd0f1cf8de851ddb91e666e4cbb85fdc0917f532a233
SSDEEP

12288:SLQOwkZEuaerQxI0nzd47rDFWxSozLgBHmR3fWZUpCyMRGdBu+5JKOLxhWyyshyx:fkS4QROqXzL+HQPWSdTDKOfWnaQfNR

Score

N/A

Malware Config

Signatures

Files

0ae8ac1c4633e3480d759f418b3380923e454865cfc7675c3855c589e15c4f34
.exe windows x86

d20cb0e57b17a27ca175e4cded4e08df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileIntA
Beep
ReleaseMutex
GetModuleFileNameW
Beep
Beep
VirtualProtect
GetFullPathNameW
SetLocaleInfoA
lstrcatA
VirtualQuery
TlsSetValue
Beep
SetCurrentDirectoryW
GetModuleHandleA
FormatMessageA
Beep
Beep
Beep
WriteConsoleW
Beep
SetThreadPriority
GetCurrentThreadId
lstrlenW
TlsGetValue
Beep
GetCommandLineA
Beep
DeleteFileW

catsrvut

StartMTSTOCOM
CGMIsAdministrator
RegDBRestore
RegDBBackup

Sections

.TEXT
Size: 15KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ