c9eb89eb120487f9027151d08291296be7cd9775af66238d21f6f8ebdda9709e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c9eb89eb120487f9027151d08291296be7cd9775af66238d21f6f8ebdda9709e
Size

832KB
MD5

a2f547600d19ec2144c123a5b0874d40
SHA1

7a7264bbc046cc75ddafa1b620f2bc3bf6d9195b
SHA256

c9eb89eb120487f9027151d08291296be7cd9775af66238d21f6f8ebdda9709e
SHA512

d8d1731217e49f5d6c0523711b117954a6961cbcd4d9a3fb2d8fb633c90f785a280617c41188c4186cbcb97de64f1428a781ff3e035ab9c80a2690f0755c237b
SSDEEP

12288:0Dh+6Mt+fInRaBZ2mEzuduYcoicMVgev+vPW7HaSCLrCIpxzHYRUfdMF8i:0sa6IBZ2RuduYtddevCPW7pCLRrQd

Score

N/A

Malware Config

Signatures

Files

c9eb89eb120487f9027151d08291296be7cd9775af66238d21f6f8ebdda9709e
.exe windows x86

a785aacf818848ae8fc836a632deed51

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsA
GetDriveTypeA
HeapCreate
ReadConsoleA
GetModuleHandleA
CopyFileA
GetDiskFreeSpaceA
MoveFileExW
WriteConsoleA
GetFullPathNameW
CreateFileMappingA
CompareStringA
GetEnvironmentStringsW
GetProcessVersion
CreateDirectoryA
GetBinaryTypeW
SearchPathW

msdart

??0CEXAutoBackupFile@@QAE@PBG@Z
mpMalloc
MpHeapSize
mpFree

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 702B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 813KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ