fb2a21c146c10ff1672c9e8625613f5714b0194d5c8ea63c8e37125137091246 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb2a21c146c10ff1672c9e8625613f5714b0194d5c8ea63c8e37125137091246
Size

822KB
MD5

0eabac790324e2780ca1761fb4620326
SHA1

781f556f1a7ee732f5323e710ce342b404390792
SHA256

fb2a21c146c10ff1672c9e8625613f5714b0194d5c8ea63c8e37125137091246
SHA512

3e60e61b13163fbf1bbb54c016fb0854d46a1b42f67ee80e9e69f44e6fffcd261ffc51935fb751704f16c6a8e82e04ea2655f674a18d61223b30c83a565a7ab9
SSDEEP

24576:eF+fa7lbxkTELv6RZbLtfVSXkxSWsi6nM2adwIT:Glblvst9IXFJvnMdwI

Score

N/A

Malware Config

Signatures

Files

fb2a21c146c10ff1672c9e8625613f5714b0194d5c8ea63c8e37125137091246
.exe windows x86

a5e091f72f90760604d8ad385d06aadd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
IsBadStringPtrW
GetDriveTypeW
GetDriveTypeW
VirtualAlloc
lstrlenA
GetCurrentDirectoryW
GetDriveTypeW
GetModuleHandleA
GetModuleFileNameW
GetVolumeInformationA
GetFileSize
FindResourceA
GetDriveTypeW
GetDriveTypeW
GetDriveTypeW
DeleteFileW

msxml3

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer

Sections

.play
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.edata
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ