c0eab3f2a2f0b29eecfe22aa38fae3324df7a3635c0c90c2dee281d592646330 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c0eab3f2a2f0b29eecfe22aa38fae3324df7a3635c0c90c2dee281d592646330
Size

832KB
MD5

609b8f73ef295b0bad9e8b5304208947
SHA1

7665697698f5be85037990f1a8f7c626bdfa945b
SHA256

c0eab3f2a2f0b29eecfe22aa38fae3324df7a3635c0c90c2dee281d592646330
SHA512

baf151784f2937044e040f02ca0918fb8fa5b88ec261c1c8ffe10c1192c2ef34e5a19f57a57b473a85ddebe523dbb94fedb0e22fe58788b03e8008c1345cd200
SSDEEP

24576:8TeFwXD5klie18D1Rq5Jxx5euSXD+cDVYjaM:IeFSilik+Rq3xx5zErrM

Score

N/A

Malware Config

Signatures

Files

c0eab3f2a2f0b29eecfe22aa38fae3324df7a3635c0c90c2dee281d592646330
.exe windows x86

55b7eb2e91b6f35b954f151d6a8fc50a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleA
VirtualAlloc
CreateDirectoryA
CreateFileMappingA
CopyFileA
ReadConsoleW
FreeEnvironmentStringsW
LoadLibraryA
GetDiskFreeSpaceW
GetEnvironmentVariableA
CopyFileA
GetDriveTypeA
GetTimeFormatA
GetVolumeInformationA
GetFileAttributesA
CompareStringW
HeapAlloc

msdtcprx

DTC_XaStart
DTC_XaOpen
DTC_XaPrepare
DTC_XaForget

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 696B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.odata
Size: 813KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ