6120358f70d52e593195f7ac62193d57af5ad15213d125b0ca1fdf316d84d50b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6120358f70d52e593195f7ac62193d57af5ad15213d125b0ca1fdf316d84d50b
Size

304KB
MD5

0ce3772115701a5545b21246926cca19
SHA1

a7d4aa83717c4a37f2cce15dd5727325c40d4449
SHA256

6120358f70d52e593195f7ac62193d57af5ad15213d125b0ca1fdf316d84d50b
SHA512

0937d941985e994f3165499e2025e8f518d06f524c72bef23e5e41080678547848002e0997379b1ed451c72db8e541fc01a0e2ace3411d0df1a89d4be368d662
SSDEEP

6144:Sp9imTnY3tiEoAPquIy4GBpp/nxBEH52jVjO6rZY+C:Spst3jH3dxSH01O6FfC

Score

N/A

Malware Config

Signatures

Files

6120358f70d52e593195f7ac62193d57af5ad15213d125b0ca1fdf316d84d50b
.exe windows x86

adbe707c850caea29e1c3a91d9afbd1f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextVolumeA
ReadConsoleA
HeapCreate
GetStringTypeA
GetFullPathNameA
GetFileAttributesW
ReleaseSemaphore
GetCurrentDirectoryA
OpenMutexW
GetEnvironmentVariableW
lstrcmpW
GetModuleHandleW
GetModuleHandleA
WaitForMultipleObjects
GetVolumePathNameW
CloseHandle
CloseHandle
GetConsoleMode
GetDiskFreeSpaceW
GetFullPathNameA
CloseHandle
CreateSemaphoreA
FindFirstVolumeA

dbghelp

FindFileInPath
ImageRvaToSection
ImageNtHeader
ImageRvaToVa

Sections

.text
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.res
Size: 296KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE