663bf62fdeb121ef79ab8af45639bbdd196e1214856a178fd08bbe9f7c98da26 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

663bf62fdeb121ef79ab8af45639bbdd196e1214856a178fd08bbe9f7c98da26
Size

832KB
MD5

677cc072851f3f7522260e2c2e502fa0
SHA1

aac80fdd278c84f79af0784a56f678838aa9cd4c
SHA256

663bf62fdeb121ef79ab8af45639bbdd196e1214856a178fd08bbe9f7c98da26
SHA512

a3c26413eac9724d521fdff1d0f2f7fb3d89f1fd2be20aee3e7f25f1ef3d667f2d57fb1804724b8fc0b9ddfb36cc12133c3f1b4c0a6cdeeb82c8cbff2ec4f735
SSDEEP

12288:GuHTZMx8hWQuLQMyq+GMK0OgB7d79hldFJXpIz6b0nStq0YzC5MTkLx:hU861bMKhURjl5W6ns0Yz5TkL

Score

N/A

Malware Config

Signatures

Files

663bf62fdeb121ef79ab8af45639bbdd196e1214856a178fd08bbe9f7c98da26
.exe windows x86

796c225e987c3b2082f3d28f56548bde

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SearchPathW
GetDriveTypeA
HeapAlloc
CompareStringA
CopyFileA
GetFileAttributesA
VirtualAlloc
FreeEnvironmentStringsW
CopyFileA
CreateFileMappingA
GetEnvironmentStringsW
CreateDirectoryA
ReadConsoleA
GetDiskFreeSpaceW
LoadLibraryA
GetBinaryTypeW
WriteConsoleA

msdtcprx

DTC_XaStart
DTC_XaOpen
DTC_XaEnd
DTC_XaPrepare

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 678B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.odata
Size: 813KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ