985930edc0a92c2df5fa9a541266d52bebb7f3b6cfbd25532f81cf43f6dc0d3c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

985930edc0a92c2df5fa9a541266d52bebb7f3b6cfbd25532f81cf43f6dc0d3c
Size

94KB
MD5

29e610bc0f6c29f56e7f29d371056284
SHA1

a0a85313992befcc8a935df5e81d0570cd560c0e
SHA256

985930edc0a92c2df5fa9a541266d52bebb7f3b6cfbd25532f81cf43f6dc0d3c
SHA512

b1537c1198476b47981c5907783940735a9182250c09f82b477462f868730ac2212411e74fe3164ace3033cb06bc2274c6f8d483c25efe1bbd5785221669dbbe
SSDEEP

1536:WOS3wP2r1AvTy4CynPqx/juJVc4EFxVNrAa0Z+:xOoTybkPqx/jSfGyZ

Score

N/A

Malware Config

Signatures

Files

985930edc0a92c2df5fa9a541266d52bebb7f3b6cfbd25532f81cf43f6dc0d3c
.exe windows x86

e027e0507ded763b2353fac7689b0e4f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Module32NextW
QueryDepthSList
GetSystemInfo
DeleteVolumeMountPointA
InitializeSListHead
InterlockedFlushSList
SetFileShortNameA
_llseek
FileTimeToSystemTime
IsValidCodePage
LeaveCriticalSection

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ani
Size: 37KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE