2606ea049b1c357af9957b87c30555c13bce9b0bb7794ad861ef3ece631ab3d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2606ea049b1c357af9957b87c30555c13bce9b0bb7794ad861ef3ece631ab3d2
Size

4KB
MD5

7a880a671b7b77db2d923b806bfcd53a
SHA1

07ee4c8f09bac911bf7553e908393c1a422ac30e
SHA256

2606ea049b1c357af9957b87c30555c13bce9b0bb7794ad861ef3ece631ab3d2
SHA512

3a874a2999850e0258b54bbcdf14048f3867766753dba25db3b70733bcb6546ccc8903b7467e19b9680dfb73bc07a1e68e2fe52e28b0b091889e57c9aeb3e89a
SSDEEP

24:eH1GSyk8zX0lVY+AQ5gdaut2pZQi1iKHlcXglQp274C+/lXgwFU3K3RbRkjudbjr:yyk8regdam2pZp1i6lc7HlPbkKNfPY0h

Score

N/A

Malware Config

Signatures

Files

2606ea049b1c357af9957b87c30555c13bce9b0bb7794ad861ef3ece631ab3d2
.dll windows x86

d7d03cfcde314dd9338220f955e0c9a5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetProcAddress
LoadLibraryA
ExpandEnvironmentStringsA
lstrcmpiA
lstrlenA
DisableThreadLibraryCalls
CreateFileA
WinExec
CloseHandle

advapi32

RegEnumValueA
RegDeleteValueA
RegOpenKeyA

Exports

Exports

DriverProc
auxMessage
midMessage
modMessage
mxdMessage
widMessage
wodMessage

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 630B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 126B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ