5fb61d3c398cf8f456d811a4e0072aabc1f1b2e684b4a12d78d7abff1558b5a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5fb61d3c398cf8f456d811a4e0072aabc1f1b2e684b4a12d78d7abff1558b5a5
Size

503KB
MD5

7251621f296cee975f6fef9bcb37a5bb
SHA1

2f15b7906ac78b4dc96ad7e39982f00e4b7b2d41
SHA256

5fb61d3c398cf8f456d811a4e0072aabc1f1b2e684b4a12d78d7abff1558b5a5
SHA512

b6e1c4c4b48b403abc09cab87ae324fcc2a68a864801588302aa9baaf8f9f5ea8862bf61ae3662bb5a76b4d3a8dd6b360ae3f82748390bcabe8d39b9728270e7
SSDEEP

12288:LuconD6sOvA118sYCkwamja7bcZTrE5FC3elX/XICHMh:LnoD6sOv618ErQAsXvICHY

Score

N/A

Malware Config

Signatures

Files

5fb61d3c398cf8f456d811a4e0072aabc1f1b2e684b4a12d78d7abff1558b5a5
.exe windows x86

a1cea7ebfd9c747bd6e608c87cd9e83a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
lstrcmpiA
HeapCreate
CreateMailslotA
lstrcmpiA
GetDriveTypeW
GetStdHandle
WaitForMultipleObjects
lstrlenA
lstrcmpiA
CreateNamedPipeW
GetVolumePathNameW
FileTimeToLocalFileTime
IsValidLocale
GetProcessHeap
Sleep
DeleteFileA
GetLogicalDriveStringsW
GetModuleHandleA
OpenMutexA
lstrcmpiA
SetLastError
lstrcmpiA

scecli

DeltaNotify
SceOpenPolicy
InitializeChangeNotify
SceSysPrep

Sections

.text
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 3KB - Virtual size: 532KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 495KB - Virtual size: 495KB

IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ