c6b6d79fc5f0c56ac20952bebd0f7a8023647462d6f51d2444e9b41341448142 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6b6d79fc5f0c56ac20952bebd0f7a8023647462d6f51d2444e9b41341448142
Size

809KB
MD5

a31be0a774e6a801226595e061f01b80
SHA1

064927f465a1703884a8a31cb5ad81d96af32621
SHA256

c6b6d79fc5f0c56ac20952bebd0f7a8023647462d6f51d2444e9b41341448142
SHA512

cb6a8a3af6cc43e2ae510a2850fc70ed60965a617009c485395f383f496d90228aa46c5ccc4ae06a81dd37034e2772a684fd08d3c18e7cb2744278347c3c05ff
SSDEEP

24576:cF21HqCs9SETZH+oUc05PMFvjtsnmya1JRTp6/w/6:c68TZHzUT5PevjKa1QYC

Score

N/A

Malware Config

Signatures

Files

c6b6d79fc5f0c56ac20952bebd0f7a8023647462d6f51d2444e9b41341448142
.exe windows x86

e620d1d5437bf2ee36d91afd6e124933

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetLastError
LoadLibraryW
GetLogicalDriveStringsA
GetLastError
GetLastError
GetModuleHandleA
lstrcpyA
GetFullPathNameA
CreateSemaphoreA
GetCurrentDirectoryW
GetLastError
MoveFileW
IsBadStringPtrA
GetLastError
VirtualProtectEx
GetLastError

onex

OneXUIResponse
OneXAddTLV
OneXQueryStatistics
OneXUpdatePortProfile

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE