b371bb90b826236703de0c6cb33463990ffcb3675179f3eb0d2d34ea18e77028 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b371bb90b826236703de0c6cb33463990ffcb3675179f3eb0d2d34ea18e77028
Size

115KB
MD5

60f2273de502cc5542e7026a6bb1b135
SHA1

ded31ce0b7e2695bba26f91e069f1a1dbcdda80f
SHA256

b371bb90b826236703de0c6cb33463990ffcb3675179f3eb0d2d34ea18e77028
SHA512

1e3d6fc7832121373f3ad8cebcb2d66052d4284460fa2b9307360d255b6b1e6653091ffdeed9952da6e60023e2dbf5b00ae6a05930927d70c08b9fd564f00b9c
SSDEEP

1536:PPmJEyZ3P+U2RKXRcdjIOZLHz6ZPKZ9ZBRpJEur38YdCf8Fl6S/ezsPCyr1fTlFO:P7yVSRKiZxud8DpJDFLBFp1Mq6

Score

N/A

Malware Config

Signatures

Files

b371bb90b826236703de0c6cb33463990ffcb3675179f3eb0d2d34ea18e77028
.exe windows x86

8b682f8b3160fa9631200589ae7568ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryW
GetPriorityClass
CloseHandle
CreateEventA
InterlockedExchange
lstrcmpA
lstrcmpiA
LoadLibraryExW
OpenMutexA
GetExitCodeProcess
GetFileAttributesA
CloseHandle
CloseHandle
HeapCreate
GetDiskFreeSpaceA
GetPrivateProfileSectionW
GetDiskFreeSpaceA
SetFilePointer
GetModuleHandleA
SetEnvironmentVariableW
WaitForMultipleObjects
GetPrivateProfileIntW
GetPrivateProfileIntW

certmgr

DllUnregisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE