c5e5dc0e1c6d610a2bac4570522e1e1e7c78a7f57934a726392fd8b0e022e99f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c5e5dc0e1c6d610a2bac4570522e1e1e7c78a7f57934a726392fd8b0e022e99f
Size

813KB
MD5

6504e6c5b7f5595b294e0dc7a10a4650
SHA1

32dbc8f7152ad0df92235e84e1a4d12da740521d
SHA256

c5e5dc0e1c6d610a2bac4570522e1e1e7c78a7f57934a726392fd8b0e022e99f
SHA512

418b3444451f25e645f2d666451221962bcbb0c6f25e7d44402fddf0a8b39c701af6c8e15b15010711b598730dd0dbde854180b75b94819653b6e68617ef0f6a
SSDEEP

24576:xpydFxO8jxmyF8il2wM/zXZrYJFA0pVqiPqm7:r6FxQyF8imzXZYJFA0WiPqm7

Score

N/A

Malware Config

Signatures

Files

c5e5dc0e1c6d610a2bac4570522e1e1e7c78a7f57934a726392fd8b0e022e99f
.exe windows x86

b976bfb0346cf4d5340bcc786776a2ef

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
GetTickCount
DeleteFileA
SetVolumeLabelW
SetEndOfFile
lstrcpyW
GetStringTypeA
GetCurrentProcess
EnterCriticalSection
HeapCreate
LoadLibraryA
GetProcessVersion
FoldStringA
OpenThread
SetCurrentDirectoryA
GetFileSize
GetPrivateProfileIntW
GetConsoleTitleA
LeaveCriticalSection

activeds

ConvertSecurityDescriptorToSecDes
ADsSetLastError
ADsGetObject
ADsGetLastError

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 801KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ