f50bd95b0f1109245933d4d6e060513c650bb590c0bd53951befd493d19a9c21 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f50bd95b0f1109245933d4d6e060513c650bb590c0bd53951befd493d19a9c21
Size

810KB
MD5

67e07e8c295205b1816f0d9db89f20c0
SHA1

3df00c6453ec5a22864c677449ba05519a17a7a1
SHA256

f50bd95b0f1109245933d4d6e060513c650bb590c0bd53951befd493d19a9c21
SHA512

787d67176cea7031b5baf11b46d1e2044b3d99b6e47441962b4edcfe5e688549cf0095262ce596a487fb835c92fe3a1d3685c641f8f8345251f2786506217770
SSDEEP

12288:b2I9UDLiGbRVV/z+uXES7KhKxDyuVL8VoxQ2EQcGSlPAbKFkS5uRioV4mxl:y3H/V/yuUPhKxT8xT5AbUkSsVv

Score

N/A

Malware Config

Signatures

Files

f50bd95b0f1109245933d4d6e060513c650bb590c0bd53951befd493d19a9c21
.exe windows x86

774968c4aca4724d80107aaf49968843

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLogicalDrives
GetLogicalDrives
SetCurrentDirectoryW
GetLogicalDrives
OpenMutexW
GetFileAttributesA
GetModuleHandleA
lstrcpyW
CreateEventA
GetModuleHandleW
GetStringTypeA
GetLogicalDriveStringsW
GetStdHandle
GetLogicalDrives
GetTickCount
VirtualProtectEx

scecli

DeltaNotify
SceSetupGenerateTemplate
InitializeChangeNotify
SceOpenPolicy

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ydata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.kdata
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ