a4b5f12403770c38ec620d4060c5d1401080d05982442885c84063c66273be6a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a4b5f12403770c38ec620d4060c5d1401080d05982442885c84063c66273be6a
Size

518KB
MD5

0f095644d2b83f8c3721cf9003c4fdbd
SHA1

f46d7d35616b7192585abd99ab784587d7a0504e
SHA256

a4b5f12403770c38ec620d4060c5d1401080d05982442885c84063c66273be6a
SHA512

8029891b3362c7c67f6bd63e6c606e8afdecfac67d0313c98170bf655fea95655b07c36fc605b199ddf7569f830677838d6b61a9303e426377496974fb3e690d
SSDEEP

12288:bFxghGrAjevZMSm+R5vWnnm4F5vYrGdT9QRq4KjUBc3yj4oT:bzAjeBMSBRNEP5ArGAR+jseyjn

Score

N/A

Malware Config

Signatures

Files

a4b5f12403770c38ec620d4060c5d1401080d05982442885c84063c66273be6a
.exe windows x86

ead4c3eb6792bca2d23e49dd7d7099d6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetEnvironmentVariableA
CreateEventA
GetShortPathNameW
GetDiskFreeSpaceA
GetDriveTypeA
lstrcatA
GetVolumeInformationW
HeapFree
GetStringTypeA
GetTickCount
WriteConsoleW
GetPrivateProfileIntA
GetModuleHandleA
lstrlenA
VirtualProtect
GetTimeFormatW
FoldStringA
CreateMutexA
OpenEventW

msdtcuiu

DtcPerfClose
DtcPerfCollect
DtcPerfOpen
PerfDllRegisterServer

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: 493KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ydata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ