28b0de5bf472f5d436c020c014285534dea64800cd4cb2f15ce3c1edf3193399 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28b0de5bf472f5d436c020c014285534dea64800cd4cb2f15ce3c1edf3193399
Size

62KB
MD5

17982e2104106a2a56aec448e1c435d0
SHA1

e40ebeba7e06a728399c9335a665bff2c2e54c85
SHA256

28b0de5bf472f5d436c020c014285534dea64800cd4cb2f15ce3c1edf3193399
SHA512

3a10031d388945f930f57ca60780a81202be0b5f0ef9cca40177cc8be76c17203c78bb8ba6a3da3e07f39eb11d2738f85775597d5c12ca8feda2d19cbc459646
SSDEEP

1536:x32sOp+xCREH5PxozAMshTwP4sFPgOSCk6dRm9D2:xmsu+CWXuA9hT44sZgOSCbnJ

Score

N/A

Malware Config

Signatures

Files

28b0de5bf472f5d436c020c014285534dea64800cd4cb2f15ce3c1edf3193399
.exe windows x86

3cbb975b66646206f25f75be1764f5db

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomW
GetLogicalDrives
CloseHandle
Process32Next
GetCurrentConsoleFont
UpdateResourceA
HeapDestroy
IsBadCodePtr
GetTimeFormatW
GetConsoleAliasExesA
TryEnterCriticalSection
FindFirstVolumeMountPointA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE