9f7d4e0e9ee45d0212c96324460c6388d142dbb63b8f8df7f23f84d04e04f2b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9f7d4e0e9ee45d0212c96324460c6388d142dbb63b8f8df7f23f84d04e04f2b3
Size

195KB
MD5

00d05f538e10faf5bd7c472ba890d5e8
SHA1

2aa8544193ca85e5a48e46319c6bbd370082e23a
SHA256

9f7d4e0e9ee45d0212c96324460c6388d142dbb63b8f8df7f23f84d04e04f2b3
SHA512

32f85ab30ea7976d7d2ecc047c96d4ba5638957d39d3bbe66fbe8171284912bc997519b20aa0af0e4cddedefeae5738338a939c279b5b6df89f3cbff235f5097
SSDEEP

3072:pb31CzRWjVtw4MS9fhbGnNxK3EfwYHybjMJF6wSapt5qJvaMvBaakc0:a0sSxInvKeFN5OSMlL

Score

N/A

Malware Config

Signatures

Files

9f7d4e0e9ee45d0212c96324460c6388d142dbb63b8f8df7f23f84d04e04f2b3
.exe windows x86

019f3942926f65034f298222d27d6159

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableW
IsBadStringPtrW
GlobalCompact
CreateNamedPipeW
FindVolumeClose
InterlockedDecrement
GetThreadLocale
_lread
GetSystemInfo
SetThreadIdealProcessor
DeleteVolumeMountPointA
CloseHandle
GetDriveTypeW
InterlockedCompareExchange
FatalExit
FreeEnvironmentStringsA
GetProcessAffinityMask
DosDateTimeToFileTime
GetFileSize
SetThreadExecutionState
Process32First
CreateMailslotA
GetModuleHandleA
GetSystemTime
VerifyVersionInfoW
EnumSystemLanguageGroupsA
EndUpdateResourceW
SetHandleCount
GetDriveTypeA
SuspendThread

user32

DdeQueryConvInfo
GetAltTabInfoW
EnumPropsExW
SetFocus
GetMessageW
SendDlgItemMessageA
TranslateAcceleratorA

Sections

.text
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ