76ba2082829b464d85bf8a04af6b60be607d0c20baf0375bba12b50389490953 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76ba2082829b464d85bf8a04af6b60be607d0c20baf0375bba12b50389490953
Size

63KB
MD5

763b5def9ee7d870b8419bc700f3a729
SHA1

d2914bbd8f36fed08e67e776bbff3961e2518d2e
SHA256

76ba2082829b464d85bf8a04af6b60be607d0c20baf0375bba12b50389490953
SHA512

c0862a41e7e039c4f3d350835b83f9543bdd0744742e1ff45d3ac2eacb20cb3e891c04fa4f2f35890351f93563ef255a48a642dc9bd0e9627d0d8db193445766
SSDEEP

1536:68BhlNsIHLHCl9CpvxxLE9QLyxZ1ky048KOKkRI3LuY9eR20JfOXU+:6ChlGIrHLKQLyY4/OpW3yYpsfOXU+

Score

N/A

Malware Config

Signatures

Files

76ba2082829b464d85bf8a04af6b60be607d0c20baf0375bba12b50389490953
.exe windows x86

44b7eec5e98206d37e8dced4fbbb6f34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNextVDMCommand
BackupRead
DeactivateActCtx
GetProfileStringW
GetModuleHandleExW
GlobalHandle
LZSeek
CmdBatNotification
lstrcatA
EnumCalendarInfoW
SetVolumeMountPointW
RegisterWaitForSingleObject

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE