205844540987d4ec9d382d928ca1761d40e0013dc64378e78d21d0b29256a317 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

205844540987d4ec9d382d928ca1761d40e0013dc64378e78d21d0b29256a317
Size

72KB
MD5

4196ff0ecb496055beb2d43c4e714aa9
SHA1

19c26ed6946c4c53f67796a057e814056a82d60f
SHA256

205844540987d4ec9d382d928ca1761d40e0013dc64378e78d21d0b29256a317
SHA512

4f5f8b49150b53ebed87a13180b79f7f554f9a200b702bb42d37223235b8d62429acfffaa692be8df540920ccc9e1746745d11902eec4ee221e0c4e8a14d2da4
SSDEEP

768:EQgltyzF3xsswiWvkV/zV/5yUpZ4bJ4CTUKpcR/fPeDxX7adeJ:lF3yK7d5yU3bKYXmDp79J

Score

N/A

Malware Config

Signatures

Files

205844540987d4ec9d382d928ca1761d40e0013dc64378e78d21d0b29256a317
.exe windows x86

7197dc47134cb0cd7f3208c3c315b6ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

esent

JetBeginTransaction
JetCommitTransaction
JetCloseTable
JetCloseDatabase
JetCloseFile

kernel32

GetProcAddress
GetModuleHandleA
GetLocaleInfoW
GetFileSize
lstrcpynW
CopyFileW
GetLastError
ReadFile
CreateWaitableTimerW
GetDateFormatA
SetErrorMode
InterlockedIncrement
WaitForSingleObject

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 889B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ