d905be9d4380226e72c8deca60725c67464c816924daaf685e545e99ce29809e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d905be9d4380226e72c8deca60725c67464c816924daaf685e545e99ce29809e
Size

417KB
MD5

6a4e650f7ed65640a4027874f238bff0
SHA1

63639b19d8a39a8f53a3aa9325d4fe82b10ac0e1
SHA256

d905be9d4380226e72c8deca60725c67464c816924daaf685e545e99ce29809e
SHA512

4ee2b1982a188ac6c3450e616e208aade8b93a0583381eaa861acd9593147c44883443770bc50aaa5a43b50d53c41fa6689304cb3725b188f902562c3bb80ec4
SSDEEP

6144:OAjUnXf3oe1lP01u/0FxRMVkTWh5yGLwYu6/R+MexmitdHR/OKAWp2DeeHRabWjy:ev4e70oMeJ5yGLfo3H4RaQy

Score

N/A

Malware Config

Signatures

Files

d905be9d4380226e72c8deca60725c67464c816924daaf685e545e99ce29809e
.exe windows x86

82a49566bc89e64cb19683688ce4e31b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
CreateFileA
GetModuleHandleW
CreateSemaphoreA
VirtualFree
CreateEventA
GetFullPathNameW
FindClose
HeapCreate
FindClose
GetConsoleMode
CopyFileA
FindClose
GetModuleHandleA
SetVolumeLabelA
Sleep
ReadConsoleW
GetVolumePathNameW
GetEnvironmentVariableW
CreateFileMappingA
GetCurrentDirectoryW
FindNextVolumeW
GetFullPathNameW

dbghelp

FindFileInPath
ImageRvaToSection
ImageRvaToVa
ImageNtHeader

Sections

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RES
Size: 410KB - Virtual size: 924KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ