247f161ac8e91c5dc0b12c0aecf8a06ec7f21bb7fb7fa6fbe786b37c783a2a42 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

247f161ac8e91c5dc0b12c0aecf8a06ec7f21bb7fb7fa6fbe786b37c783a2a42
Size

830KB
MD5

6b0746bd144a3f9e9721404ece6fb473
SHA1

e3a93e1067339704a6f4c76b043b04c5a25173ff
SHA256

247f161ac8e91c5dc0b12c0aecf8a06ec7f21bb7fb7fa6fbe786b37c783a2a42
SHA512

9cd613cbc79fecbd623e96a9ead4555cfde857e764c0b842ea0b1261360dbead37a8a31d5f8ef751ff64ca59039e6d079c8f162de1cb0041635ae25fc253b40c
SSDEEP

24576:zZA/J4fMz19yXEpBJGfw5EDCczVJakoe:NAkYBJGfw5KRzbF

Score

N/A

Malware Config

Signatures

Files

247f161ac8e91c5dc0b12c0aecf8a06ec7f21bb7fb7fa6fbe786b37c783a2a42
.exe windows x86

3350c2c01a4b4fe9b0ce2e338bb1cb4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextFileW
SetEvent
GetCurrentProcess
GetLocaleInfoW
GetDiskFreeSpaceA
LeaveCriticalSection
EnumResourceNamesA
GetTickCount
GetCommandLineA
CreateSemaphoreW
HeapCreate
WaitForSingleObject
GetModuleHandleA
CompareStringA
MoveFileExA
EnumCalendarInfoA
GetConsoleTitleA

esent

JetTruncateLog
JetStopService
JetTerm
JetUpdate

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ADATA
Size: 813KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ