a48187a371feeb5e043d38384b81957f556da4df409c84d1f5a5b32ca260334c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a48187a371feeb5e043d38384b81957f556da4df409c84d1f5a5b32ca260334c
Size

116KB
MD5

037ef6e9623d82529b454fb718b621c6
SHA1

80764eacc68ff5cc1877fa259faac4857f305ab7
SHA256

a48187a371feeb5e043d38384b81957f556da4df409c84d1f5a5b32ca260334c
SHA512

0f42ea5b82c067d3ed0011b99af7c43d7f7683b7f40db465ff9df7d8ff0e8e71e80f906ff740fdc8a38b6dbefa9068ca52ad2f80f6a921a6227455991c1f5fb3
SSDEEP

1536:vrktZWgABsxkyAf0jh3yeYAeh/RDIPp0Hva4NaQxvaJgqgJk:68Bs2rf01+L3Wp0HvVNBaeqX

Score

N/A

Malware Config

Signatures

Files

a48187a371feeb5e043d38384b81957f556da4df409c84d1f5a5b32ca260334c
.exe windows x86

7549e3086754b710ebcf72f1b53bac5c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForMultipleObjects
GetExitCodeProcess
CloseHandle
GetPrivateProfileIntW
GetPrivateProfileIntW
lstrcmpA
SetEnvironmentVariableW
CloseHandle
CloseHandle
GetFileAttributesA
GetModuleHandleA
GetDiskFreeSpaceA
lstrcmpiA
LoadLibraryExW
GetPrivateProfileSectionW
GetPriorityClass
CreateEventA
CreateDirectoryW
SetFilePointer
InterlockedExchange
HeapCreate
OpenMutexA
GetDiskFreeSpaceA

certmgr

DllUnregisterServer
DllGetClassObject
DllRegisterServer
DllCanUnloadNow

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE