c1bd5194cd67fe98f90cd28353a0deaa27833f81893134163cce35a94592d636 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1bd5194cd67fe98f90cd28353a0deaa27833f81893134163cce35a94592d636
Size

816KB
MD5

6f7d57da2a00cabf51ea1f410bc654ae
SHA1

b79958c154d13bb61f960955563112b9a9a2e7a0
SHA256

c1bd5194cd67fe98f90cd28353a0deaa27833f81893134163cce35a94592d636
SHA512

ba8e7d5d087d5d4a57b3348d8cc381aff327f24a6b7310a9afc0f1bc1d8b8484bec4ac6528953de7752317b7a1fcf94a9d61197b12bc807c63cb2bbdb3a33e99
SSDEEP

12288:wqKHvS010hR1R5Bw32NKjfWojXAkYaVIwIIisbAllaoBZfKdtNgs21bDpwQN+:+SV1tw3USWmAkYOPqaMZiutKQs

Score

N/A

Malware Config

Signatures

Files

c1bd5194cd67fe98f90cd28353a0deaa27833f81893134163cce35a94592d636
.exe windows x86

08244620876523866d1265fb336ec719

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
LoadLibraryA
GetDriveTypeW
OpenMutexA
GetDriveTypeW
GetVolumePathNameA
GetDriveTypeW
lstrlenA
VirtualAlloc
GetVolumeInformationW
GetDriveTypeW
MoveFileA
FindResourceW
GetDriveTypeW
GetCurrentDirectoryW
GetDriveTypeW
GetDriveTypeW

netshell

HrRenameConnection
HrCreateDesktopIcon
HrLaunchConnection
HrGetIconFromMediaType

Sections

.play
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.ydata
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ