b6c4edd60d1cb48fcf4a7819f5b80b8fb2def235b1c01debd12076b1cc2bcdeb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6c4edd60d1cb48fcf4a7819f5b80b8fb2def235b1c01debd12076b1cc2bcdeb
Size

810KB
MD5

099e9c4e98ac0f92dd61475f13995290
SHA1

0a85cb7777df69a5888abab8c8e4a37e2de4b5cd
SHA256

b6c4edd60d1cb48fcf4a7819f5b80b8fb2def235b1c01debd12076b1cc2bcdeb
SHA512

4d032f6ca0563bacb44ace12dce080e1b56bf4d964dda03494c2df1e05dee770640c803120163d19e5fc4629d1f27653ff69dd15621064370086a2beb178bf3e
SSDEEP

24576:WjAH1L7VGmQIvcMOyXHjfPie1odnW7UJNM+Xyq:WA1PP6OXHwnW7cNfh

Score

N/A

Malware Config

Signatures

Files

b6c4edd60d1cb48fcf4a7819f5b80b8fb2def235b1c01debd12076b1cc2bcdeb
.exe windows x86

7e9dfbf4da467380db46c4d4be7902f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCurrentDirectoryW
OpenMutexA
GetLogicalDriveStringsW
GetLogicalDrives
GetTickCount
GetModuleHandleW
GetStdHandle
VirtualProtectEx
GetStringTypeA
GetLogicalDrives
GetFileAttributesA
CreateEventA
lstrcpyW
GetLogicalDrives
GetLogicalDrives
GetModuleHandleA

riched20

RichEditANSIWndProc
RichEdit10ANSIWndProc
IID_ITextHost
IID_IRichEditOle

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.kdata
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ