d2127e0b51c5341ff0aba2810a3fc1c8fdb2fc74c0b95d85b6c037313fe6fadc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d2127e0b51c5341ff0aba2810a3fc1c8fdb2fc74c0b95d85b6c037313fe6fadc
Size

69KB
MD5

8474f3a70a7ed97d844327d657e89bb1
SHA1

16f7aa1650c1ddf73f77974123b29b3688805a0d
SHA256

d2127e0b51c5341ff0aba2810a3fc1c8fdb2fc74c0b95d85b6c037313fe6fadc
SHA512

f7829487168b5fad669d39297121c82c3c41e603f16e8c02fb303ca5bddeba86b406eaed5eb5bbbe1b1c12c505339673e6f33c1626f577207737c37209fa04fe
SSDEEP

768:VeBBm6CZeaV0HOt3iH71/PbASKxwWfhFdzMBieeLD6vYlAXLdUFbibulN1PVFaWV:fV0x7lANrEIIGe0GbeVF96VFJzO

Score

N/A

Malware Config

Signatures

Files

d2127e0b51c5341ff0aba2810a3fc1c8fdb2fc74c0b95d85b6c037313fe6fadc
.exe windows x86

91fd715923ee2c81b6b693557db290c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoA
lstrcpyW
lstrcpyW
IsBadStringPtrW
SetStdHandle
GetFullPathNameA
TlsAlloc
CreateEventA
lstrcpyW
FindNextVolumeW
lstrcpyW
lstrcpyW
lstrlenW
GetCurrentProcess
VirtualAlloc
GetStartupInfoW
SetConsoleTitleA
GetPrivateProfileIntA
GetModuleHandleA
GetNumberFormatA
SetCurrentDirectoryA
GetModuleFileNameW
DeleteFileA

untfs

ChkdskEx
Extend
Recover
Format

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 1KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RDATA
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.EDATA
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ