f34056184d4c9cbd40ea2ba5a842c2f5307a0edf463c967a10eb225ebb823281 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f34056184d4c9cbd40ea2ba5a842c2f5307a0edf463c967a10eb225ebb823281
Size

301KB
MD5

831db7aeb56031eb0114772e1b6e2b3e
SHA1

23d9a29e3c7e9596917cd3f9eb38aa4b32f778e7
SHA256

f34056184d4c9cbd40ea2ba5a842c2f5307a0edf463c967a10eb225ebb823281
SHA512

51c0a2f433560292c1a232995b2533c30183de890d2208d894aa1cc5a4c693cea21bdbf046c6358a6349e4dec387deb94902e1d3097a16c339b84e7050845f9b
SSDEEP

6144:A95nk23HWl6BAdvzihz6e+ywWG+S7x0Qg4r+tVpBJqKrTs93:Aciwvzix6KwWG+S7x0QiPpBY

Score

N/A

Malware Config

Signatures

Files

f34056184d4c9cbd40ea2ba5a842c2f5307a0edf463c967a10eb225ebb823281
.exe windows x86

0c903be18063fd9354fb24f25038d540

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenMutexW
GetConsoleMode
GetCurrentDirectoryA
GetFullPathNameW
CloseHandle
GetEnvironmentVariableW
FindNextVolumeW
GetFullPathNameW
CopyFileA
VirtualFree
FindFirstVolumeW
GetModuleHandleA
CreateSemaphoreA
CloseHandle
SetVolumeLabelA
CloseHandle
GetStringTypeA
ReadConsoleA
WaitForMultipleObjects
HeapCreate
GetModuleHandleW
Sleep
GetVolumePathNameW

dbghelp

FindFileInPath
ImageRvaToVa
ImageNtHeader
ImageRvaToSection

Sections

.text
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.RES
Size: 292KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE