d1ed91edb599d382602b26e31126e6ad7bac848a2ebba4580210b8173a68802b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d1ed91edb599d382602b26e31126e6ad7bac848a2ebba4580210b8173a68802b
Size

810KB
MD5

670a4c9c36ec8044864806caa003ae10
SHA1

13c9e9abe6e294ec3ae6c6acae4d328a27852c51
SHA256

d1ed91edb599d382602b26e31126e6ad7bac848a2ebba4580210b8173a68802b
SHA512

c6dc080ca05b745a99a7126fcdde751d4934201e0a21f822b87a310ae8c4bbcaae0cf7ec7888dd42ba665d3692ad676b0698ee9753e40c0f79a1eb60d5302102
SSDEEP

12288:oNV3bGMNivPpvsIxQCD1gfrvnovKif2gllP6df9d2O+314NBYTxSJcqO:aV3bUpEaQnvovKif9a2b3qNBYTW3

Score

N/A

Malware Config

Signatures

Files

d1ed91edb599d382602b26e31126e6ad7bac848a2ebba4580210b8173a68802b
.exe windows x86

6841c94026e6476fed28a24638094810

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtectEx
SetLastError
lstrcpyA
SetLastError
GetModuleHandleA
SetLastError
GetFullPathNameW
CreateSemaphoreW
SetLastError
SetLastError
SetCurrentDirectoryA
GetLogicalDriveStringsW
MoveFileW
OpenMutexA
GetTickCount
SetLastError

riched20

RichEdit10ANSIWndProc
IID_IRichEditOle
RichEditANSIWndProc
IID_ITextHost

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.ndata
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ