1c9f1411642018f8a85644f2df744351c0d8c9fe83986215d0a2b1f3d8e176ef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c9f1411642018f8a85644f2df744351c0d8c9fe83986215d0a2b1f3d8e176ef
Size

810KB
MD5

7c42a672808ffea9f3d0d260fe1fe9e0
SHA1

1b2f79e3e7380069bf9449a51b1d6e5fa05d0488
SHA256

1c9f1411642018f8a85644f2df744351c0d8c9fe83986215d0a2b1f3d8e176ef
SHA512

56f3d332579688afbf2340119cf749669ae649c9e597f5cf99fa903537a6633b627a29e4515c55b322bc4b86f44e53d3d4d52256b74233380d3f21d40f2d53fd
SSDEEP

24576:SJo6GmhgC0A3tEn6blIC9JoEeBT+9bBev:SrhgCV9EMlx9JUBT2bBe

Score

N/A

Malware Config

Signatures

Files

1c9f1411642018f8a85644f2df744351c0d8c9fe83986215d0a2b1f3d8e176ef
.exe windows x86

3384cb6c7281155852220d29f66b617e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLogicalDrives
GetLogicalDrives
SetCurrentDirectoryA
GetTickCount
GetLogicalDrives
GetLogicalDriveStringsW
CreateSemaphoreW
lstrcpyW
GetStringTypeA
GetFileAttributesA
GetLogicalDrives
GetFullPathNameW
VirtualProtectEx
OpenMutexA
GetLogicalDrives
GetModuleHandleA

riched20

IID_ITextHost
RichEdit10ANSIWndProc
IID_IRichEditOle
RichEditANSIWndProc

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.ndata
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ