c091efcf0017ef4b155a7e74d4adc5836c468a473ccb76af69880643df7fa667 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c091efcf0017ef4b155a7e74d4adc5836c468a473ccb76af69880643df7fa667
Size

320KB
MD5

a1a2c8d19da85ab9658508bd048158e0
SHA1

e36e64ee2a25806d7c6aad473c6c5428b8f3a871
SHA256

c091efcf0017ef4b155a7e74d4adc5836c468a473ccb76af69880643df7fa667
SHA512

480eb935fe21e72758a140ef4a70014c27d5b8e9023fde6faebb615cd2f38c5fabbafde1866492aa4e45173456212989fdc1c421a5160d210eaf0a9c63857103
SSDEEP

6144:0TSkl2hH2RfS155ONNXBuWoJBO9OMbHLkAqF7Ief9UmM7/uT:0TSklE2EB0NxDIBuOFe7/uT

Score

N/A

Malware Config

Signatures

Files

c091efcf0017ef4b155a7e74d4adc5836c468a473ccb76af69880643df7fa667
.exe windows x86

c90e404e559d859a3ef46f9d44d19691

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteProcessMemory
CreateEventW
SetFileAttributesW
lstrcmp
FindVolumeMountPointClose
FindResourceA
FindNextFileW
SetCriticalSectionSpinCount
SetUserGeoID
Process32First
Sleep
GetPrivateProfileSectionA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tc
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE