02c18360d959dbe64c0f90a86c2cf8425575406ba58ebc0ca6975584e3e5636f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02c18360d959dbe64c0f90a86c2cf8425575406ba58ebc0ca6975584e3e5636f
Size

108KB
MD5

09354221f729521eb055d81e70477826
SHA1

37ee5bddc1bdee7261a1736e870016fe232d442a
SHA256

02c18360d959dbe64c0f90a86c2cf8425575406ba58ebc0ca6975584e3e5636f
SHA512

059658a422b25473f33a2515a45b35ee4edf7bcd4293183f613b31a061551aec617f7eb3d835866278a4572b0998759c3a58f8e08fa0dd3c0e6e2f1628fbe8a3
SSDEEP

1536:+qPgyQoO2fnqFjxo+uB7sHAJlDbWaAZJi68vMR2ww7RkP1Cy9oaRtCwC21q:rPgFoffie+I7p3EJi6Vt8Rq9o2IwH1q

Score

N/A

Malware Config

Signatures

Files

02c18360d959dbe64c0f90a86c2cf8425575406ba58ebc0ca6975584e3e5636f
.exe windows x86

78fd3424a25f052d8e3ea0ee48ec229c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumeNameForVolumeMountPointW
GetConsoleKeyboardLayoutNameA
CreateTimerQueue
GlobalSize
UnregisterWaitEx
GetVolumeInformationA
GetNativeSystemInfo
TrimVirtualBuffer
BaseUpdateAppcompatCache
ConvertThreadToFiber

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 94KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE