5ca92b5bc1ba29a554cf9c6c5aa841bb6f45992328d6deaed50734fb745bc6fe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ca92b5bc1ba29a554cf9c6c5aa841bb6f45992328d6deaed50734fb745bc6fe
Size

830KB
MD5

644b825dabb2f2896ce902cb93e878d0
SHA1

6037497cb9b9fa5792e97612161dcbd5693576b4
SHA256

5ca92b5bc1ba29a554cf9c6c5aa841bb6f45992328d6deaed50734fb745bc6fe
SHA512

a53c84c20c96e573cdf5a3f77a2bc0016ea0c04a3ad52d532898f0766353a09484ce1e4c3b001de08fca21ad57c8934e9ddd4b7c7d01afa3bc487aed5bcb1834
SSDEEP

12288:rROU2Bjq2AAOs0o9tNGsxJMXWE1qkWbslk3i8u9jQPPPstgL6wjfRoM:rAPp/AG0oPvJ8MkMsW8jQHPoK6ORoM

Score

N/A

Malware Config

Signatures

Files

5ca92b5bc1ba29a554cf9c6c5aa841bb6f45992328d6deaed50734fb745bc6fe
.exe windows x86

cd379c534443bd5ec0b216be21471630

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetModuleHandleA
LeaveCriticalSection
FindNextFileA
GetConsoleTitleA
EnumCalendarInfoW
FindResourceW
MoveFileExA
GetCurrentThread
GetAtomNameA
VirtualAllocEx
GetDiskFreeSpaceA
WaitForSingleObject
GetLocaleInfoA
SetEvent
CreateSemaphoreW
GetNumberFormatW

dmdskmgr

?CompareDiskNames@@YGHJJ@Z
DllCanUnloadNow
LoadPropertyPageData
DllGetClassObject

Sections

.code
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.PDATA
Size: 813KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ