cd6c96a5d288d2c84dfa8bc012b2565715d6e71dd8f5ef48f21572fab2d5f211 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd6c96a5d288d2c84dfa8bc012b2565715d6e71dd8f5ef48f21572fab2d5f211
Size

62KB
MD5

a1a0a94afe98c08cff289b5b483b5c60
SHA1

0438f615e2dd1bfbff73dd17900e6de85c6f72b0
SHA256

cd6c96a5d288d2c84dfa8bc012b2565715d6e71dd8f5ef48f21572fab2d5f211
SHA512

f4dc82853d2860cfbdf2a60dc0bd97983223a7b98c51642020041305e711d0af2cc28848e840b9ffda54b9f0f93af951454773e43dba4367ca1ca1f679291e92
SSDEEP

1536:vPlTiehWpSGHpzkEXrAIR++T8oY1QfGuQH9wRLQ8N:XRxESGesrVdsonlRL5

Score

N/A

Malware Config

Signatures

Files

cd6c96a5d288d2c84dfa8bc012b2565715d6e71dd8f5ef48f21572fab2d5f211
.exe windows x86

dca7a28393070f6763ec9beae8af733e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lcreat
SetConsoleNumberOfCommandsW
GlobalUnlock
ConvertThreadToFiber
SetEnvironmentVariableW
OpenDataFile
GetDriveTypeW
FindActCtxSectionStringW
GetComputerNameExA
CreateFileA
GetFirmwareEnvironmentVariableW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE