de02f85e5612a04ab3dbda5561e96a0a1a7627726286bb225e4634ae1ef5e2c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de02f85e5612a04ab3dbda5561e96a0a1a7627726286bb225e4634ae1ef5e2c0
Size

306KB
MD5

6774481ee3f5e83f77631f1f5e79498b
SHA1

9cc07e3f935e8be2d56c23de23272f7d1e8ddbd6
SHA256

de02f85e5612a04ab3dbda5561e96a0a1a7627726286bb225e4634ae1ef5e2c0
SHA512

a03616cf7809995f7b2cc7ab8e53939393955faeb8c123bd30e8c4bcd999788e24731a7e782324550da056ce4f96d6e8dbc13aca12633e1b73951ce290948cc7
SSDEEP

6144:ACqiNtmNkKxZki/jkkk+by5atfQ0rGKUjQs556Sjs7Hfu:/qiN8N/XL4ottfQ0isQkSjiG

Score

N/A

Malware Config

Signatures

Files

de02f85e5612a04ab3dbda5561e96a0a1a7627726286bb225e4634ae1ef5e2c0
.exe windows x86

a8fdd1d736ab36376439dff328ddabf9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetCurrentDirectoryA
GetDiskFreeSpaceW
GetModuleHandleW
OpenMutexW
GetConsoleMode
HeapCreate
GetFullPathNameA
CloseHandle
FindNextVolumeA
ReleaseSemaphore
CreateSemaphoreA
GetVolumePathNameA
ReadConsoleA
CloseHandle
GetFileAttributesW
GetModuleHandleA
FindFirstVolumeA
GetFullPathNameA
lstrcmpW
GetEnvironmentVariableW
WaitForMultipleObjects
GetStringTypeA

certmgr

DllRegisterServer
DllGetClassObject
DllCanUnloadNow
DllUnregisterServer

Sections

.text
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.pack
Size: 297KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE