9612e22a35ae5f4ada709acd83687a5ae33d79d0a25203953b1c5f7e8e6a3f92 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9612e22a35ae5f4ada709acd83687a5ae33d79d0a25203953b1c5f7e8e6a3f92
Size

823KB
MD5

61e044057f4b0c61b940b92907167420
SHA1

0b11c72e9bc40e2cba9094026d5c4089973fe510
SHA256

9612e22a35ae5f4ada709acd83687a5ae33d79d0a25203953b1c5f7e8e6a3f92
SHA512

bf95d3d28398fa3907fc3add2815e2357b013e95adfd500b574360d2e3ce75322c278dd9b8a36bbef21adf2bcdce4eb8c159d49b6f31089b69aaecd763d321be
SSDEEP

24576:KAdVDRFMWVsDfae0drNqb2aSsD6sfcBcRONbdpZh:RdBRehae07kssfrROz3h

Score

N/A

Malware Config

Signatures

Files

9612e22a35ae5f4ada709acd83687a5ae33d79d0a25203953b1c5f7e8e6a3f92
.exe windows x86

ca6f5fca381ed28194d9e2eae4abd01b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
CreateDirectoryW
GetLocaleInfoW
GetLocaleInfoW
GetLongPathNameW
OpenMutexA
HeapCreate
GetLocaleInfoW
GetLocaleInfoW
GetLocaleInfoW
GetLocaleInfoW
GetLocaleInfoW
GetLocaleInfoW
GetModuleHandleA
DeleteFileA
GetLocaleInfoW
CreateMailslotW

mswsock

s_perror
sethostname
rexec
rcmd

Sections

.code
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ldata
Size: 804KB - Virtual size: 2.2MB

IMAGE_SCN_MEM_READ