30d48cb0b10d1ec0a6cc335358e5278b959e6ff43fa8d44a5a7b8335ab5b730f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30d48cb0b10d1ec0a6cc335358e5278b959e6ff43fa8d44a5a7b8335ab5b730f
Size

29KB
MD5

a05dea0a4b22dc3edf71eac0956d1de0
SHA1

b12739762e239d03bae8eb23056e9308d8ede57b
SHA256

30d48cb0b10d1ec0a6cc335358e5278b959e6ff43fa8d44a5a7b8335ab5b730f
SHA512

bd1849de360fcd4dd958d0d177e149984569ae383db4a38bf17d0b82b095f58cab512cd532a3da317a3c1f56a37f4f82e6e97ddb4d1c422145e60cc8c25b6693
SSDEEP

384:us3MFm50xjyOxZ+FUl+UXSts+JxkosMqfnxvFbktiL7Z:uipwjyEAUgWSts+JCMqfx9Qtw

Score

N/A

Malware Config

Signatures

Files

30d48cb0b10d1ec0a6cc335358e5278b959e6ff43fa8d44a5a7b8335ab5b730f
.exe windows x86

d5067dec97c36533e49954859a3423ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileIntA
GetCommandLineA
GetFileSize
GetCurrentThreadId
TlsGetValue
GetDiskFreeSpaceW
WriteConsoleW
lstrcmpA
CreateDirectoryW
GetModuleHandleA
lstrcpynA
OpenMutexW
FormatMessageW
VirtualFree
lstrcpynA
DeleteFileW
lstrcpynA
lstrcpynA
ReadFile
lstrcpynA
lstrcpynA
GetCurrentDirectoryA
SetThreadPriority
lstrcpynA
lstrcpynA
VirtualProtect
lstrcatA
lstrcpynA
lstrcpynA

certcli

CADeleteCA
CADeleteCertType
CAEnumFirstCA
CAEnumNextCA

Sections

.text
Size: 17KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.pdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE