f5cebadfc86e2d3c87cb1953fed4acbc1f6c326a5c144bef4cf997f5e71c19a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5cebadfc86e2d3c87cb1953fed4acbc1f6c326a5c144bef4cf997f5e71c19a0
Size

814KB
MD5

56b4e5dc17a50ba9c038692b34baac76
SHA1

bd9d979f41010ae796c1a2539c4e2a25f4c6fbb2
SHA256

f5cebadfc86e2d3c87cb1953fed4acbc1f6c326a5c144bef4cf997f5e71c19a0
SHA512

c2fc5514d7a625b962e21f20c5dd1328ff27d419232775bf7a6ada775955de1fe002187df487190b69c0fcbfccbbece966ad2b639d02581ea6872a021ae34c16
SSDEEP

24576:uRzlrDTViLOpzYmr3328UY1hrZZrm18/:Il8Lc732L+ZyU

Score

N/A

Malware Config

Signatures

Files

f5cebadfc86e2d3c87cb1953fed4acbc1f6c326a5c144bef4cf997f5e71c19a0
.exe windows x86

3f9d989ffdf28a0cf43b8fa6db794060

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceA
SetEnvironmentVariableA
GetCurrentProcess
LeaveCriticalSection
DeleteFileW
SetCurrentDirectoryA
GetComputerNameW
GetPrivateProfileIntW
HeapCreate
GetFullPathNameA
GetConsoleTitleW
GetFileType
WriteConsoleA
GetConsoleCP
GetStringTypeA
lstrcpyW
GetProcessHeap
EnterCriticalSection
GetModuleHandleA

azroles

AzApplicationDelete
AzApplicationCreate
AzAddPropertyItem
AzApplicationClose

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 802KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ