01fb9ed38b67cfb9255343664d6bd8b1e2a70580414ccd399f69ca828f15f890 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01fb9ed38b67cfb9255343664d6bd8b1e2a70580414ccd399f69ca828f15f890
Size

304KB
MD5

bf83412b33cacd718516ba20f4f4394a
SHA1

ec0380265f33740392461ddba122d03fdea5629d
SHA256

01fb9ed38b67cfb9255343664d6bd8b1e2a70580414ccd399f69ca828f15f890
SHA512

4b239231df6519f334cf6263ffa9be6927492a57709408167d2fdb774093f86026e548780bff248ef4ef0636f21ac19d16e2da7f650d579b6e7a90c956dca95f
SSDEEP

6144:Sp9imTnY3tiEoAPquIy4GBpp/nxBEH52jVjO6rZYK:Spst3jH3dxSH01O6FF

Score

N/A

Malware Config

Signatures

Files

01fb9ed38b67cfb9255343664d6bd8b1e2a70580414ccd399f69ca828f15f890
.exe windows x86

adbe707c850caea29e1c3a91d9afbd1f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextVolumeA
ReadConsoleA
HeapCreate
GetStringTypeA
GetFullPathNameA
GetFileAttributesW
ReleaseSemaphore
GetCurrentDirectoryA
OpenMutexW
GetEnvironmentVariableW
lstrcmpW
GetModuleHandleW
GetModuleHandleA
WaitForMultipleObjects
GetVolumePathNameW
CloseHandle
CloseHandle
GetConsoleMode
GetDiskFreeSpaceW
GetFullPathNameA
CloseHandle
CreateSemaphoreA
FindFirstVolumeA

dbghelp

FindFileInPath
ImageRvaToSection
ImageNtHeader
ImageRvaToVa

Sections

.text
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.res
Size: 296KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE