89fde68934bed06d8cebb7f2457d211b367da54aa3674c61365ee9229b479f71 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89fde68934bed06d8cebb7f2457d211b367da54aa3674c61365ee9229b479f71
Size

56KB
MD5

ed067dbaa3be1aa30159e219a8101c67
SHA1

38359c3004b7f26f055f284d1ecb775a1f8f171f
SHA256

89fde68934bed06d8cebb7f2457d211b367da54aa3674c61365ee9229b479f71
SHA512

cc0eab4b49bc8094ea16e06a75eb3a4cb771def4ed11710d77e5d9196f1877ded75a0e7ba6048eb3dc79c7c0436711776d79a350ba63a673c6f9fd1db88a995b
SSDEEP

1536:sO0KkqGb1qmXytr68+KM8sYbbUQ5c7pqJ0YG47a:ciGb5qrqKjpoQK7wJ0Qu

Score

N/A

Malware Config

Signatures

Files

89fde68934bed06d8cebb7f2457d211b367da54aa3674c61365ee9229b479f71
.exe windows x86

405d1ae87f8a57592e4a3e54bbe2d66f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileW
IsBadReadPtr
FindNextVolumeMountPointA
RemoveDirectoryW
GetPrivateProfileSectionNamesW
SetMessageWaitingIndicator
WritePrivateProfileSectionW
WriteProfileSectionA
GetExitCodeProcess
GetLogicalDriveStringsA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE