b160d359e5e5245757b3beee66a50baac3e990e2d7a4eb64239c0d63cacb1281 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b160d359e5e5245757b3beee66a50baac3e990e2d7a4eb64239c0d63cacb1281
Size

810KB
MD5

54a468c7279c2d78c2eb8a1dcfb6b616
SHA1

dc47721b7d1e948bacf2a9827e55755b34aa389f
SHA256

b160d359e5e5245757b3beee66a50baac3e990e2d7a4eb64239c0d63cacb1281
SHA512

427f9f0dc2dad6f976bfca9d937a0c974ced3c99893a674914b54cb400ffe666e270800e148e545d1aced9020a4a7f12792672b0688c50027a4a22bb8079c143
SSDEEP

24576:FCwFghlajyEa+u88+rEOF5T87yILf1PYPK:Da0yIJrEO/TIc

Score

N/A

Malware Config

Signatures

Files

b160d359e5e5245757b3beee66a50baac3e990e2d7a4eb64239c0d63cacb1281
.exe windows x86

ea2558c2b5f749c21b9daabf7a08cf87

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
GetLogicalDrives
GetLogicalDrives
GetStringTypeA
GetModuleHandleA
CreateEventA
GetTickCount
GetStdHandle
GetLogicalDriveStringsW
OpenMutexA
GetLogicalDrives
VirtualProtectEx
lstrcpyW
GetModuleHandleW
GetLogicalDrives
SetCurrentDirectoryW

riched20

IID_IRichEditOle
RichEditANSIWndProc
IID_ITextHost
RichEdit10ANSIWndProc

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.kdata
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ