9ea83b2787cfa45c72b82a898977e43bcba14e8df5d173b6864df28d52432bde | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9ea83b2787cfa45c72b82a898977e43bcba14e8df5d173b6864df28d52432bde
Size

810KB
MD5

a1dad885fb74e572c515b42e63f56181
SHA1

a932807faf0be5840b35062fe0e91504cd4d5a84
SHA256

9ea83b2787cfa45c72b82a898977e43bcba14e8df5d173b6864df28d52432bde
SHA512

c67c6c8e962bea2b1d11145194e2b9c1b044afbdb0926389bf42eac7f234b6da4c5bb353d29da6707b7257bd80b25cb4d3351ec24700776c2627348fab52036c
SSDEEP

12288:IowLRwk8N3h4tvjeyMItDGHGIYLKHUuB8j9T6fdfKzeOnSTV9h5jGMXApGOY2p0q:VTZitKyM3HGUB8jkd4noV9Ajp0ZYT

Score

N/A

Malware Config

Signatures

Files

9ea83b2787cfa45c72b82a898977e43bcba14e8df5d173b6864df28d52432bde
.exe windows x86

08d9e2856f4be231a7c2923a5a65b70d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleW
GetLogicalDrives
GetLogicalDrives
CreateEventA
VirtualProtect
OpenMutexW
GetTickCount
GetLogicalDrives
lstrcpyW
GetStringTypeA
GetModuleHandleA
GetLogicalDriveStringsW
GetStdHandle
SetCurrentDirectoryW
GetFileAttributesA
GetLogicalDrives

scecli

InitializeChangeNotify
SceSetupGenerateTemplate
SceOpenPolicy
DeltaNotify

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ydata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ