ba65ffbdab4a9808c7628767ad4e939066e54b5bf25673bef0e79942af144418 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba65ffbdab4a9808c7628767ad4e939066e54b5bf25673bef0e79942af144418
Size

76KB
MD5

6216f964f48f6fcb93aa79f079e400da
SHA1

25d8e5bbc9f82cde1d6bc7112a4f8e3fb8edc221
SHA256

ba65ffbdab4a9808c7628767ad4e939066e54b5bf25673bef0e79942af144418
SHA512

683ee71543d2e5ee535173f30e32bc41f7ed438faec36fd9a98aeaeb606344ec22f68b3a6e219de3bf4a24d0c56a0ec7e720bb6f711b2e956c8a872397320a00
SSDEEP

768:sFziAlgLo5v5iO7ag59LSeLyjfADFdKUYHokmpAB1T+CJGTdVLynuauG:I1lso5v5iO7dLSeLB7uVvBRGpQT

Score

N/A

Malware Config

Signatures

Files

ba65ffbdab4a9808c7628767ad4e939066e54b5bf25673bef0e79942af144418
.exe windows x86

cb9e274012e8b425edaa50fc16edbc99

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapFree
GetDiskFreeSpaceA
GetPrivateProfileIntA
GetShortPathNameW
GetDriveTypeA
CreateEventA
GetTickCount
lstrlenA
GetModuleHandleA
VirtualProtect
OpenEventW
GetVolumeInformationW
FoldStringA
WriteConsoleW
SetEnvironmentVariableA
GetTimeFormatW
lstrcatA
CreateMutexA
GetStringTypeA

msdtcprx

DTC_XaOpen
DTC_XaStart
DTC_XaEnd
DTC_XaPrepare

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ydata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ