df01d6981c0c720b0866fff6093039c9cf8b808e387a7d5cd0129f167fdd5ef8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df01d6981c0c720b0866fff6093039c9cf8b808e387a7d5cd0129f167fdd5ef8
Size

832KB
MD5

0df528126cdd1156b5ad947348b585f6
SHA1

3aefd1ff480a762216818eb5199e409d39979deb
SHA256

df01d6981c0c720b0866fff6093039c9cf8b808e387a7d5cd0129f167fdd5ef8
SHA512

65f69db046e6e3296b948217f4ebc037a42d8cd9364aa6e17c13a3b384e2cc5e859a40fd5e46cd813f4c89a0e59232595598175d586f4ef6e3c89cf75465e6fc
SSDEEP

24576:fC0/hqFA0zdyQg9QKb9wMluqSiLzI+2GNc:a0/yByh9QWwMkql3I+

Score

N/A

Malware Config

Signatures

Files

df01d6981c0c720b0866fff6093039c9cf8b808e387a7d5cd0129f167fdd5ef8
.exe windows x86

1d62919ee07127fc6e17cbac162ce136

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateEventW
FreeEnvironmentStringsA
HeapCreate
SetCurrentDirectoryW
SearchPathA
SetLocaleInfoW
OpenMutexW
SetStdHandle
OpenSemaphoreW
GetModuleHandleA
GetDiskFreeSpaceA
GetBinaryTypeA
GetFullPathNameW
MoveFileExW
GetProcessVersion
GetEnvironmentStringsA
WaitForMultipleObjects

msctf

TF_CreateThreadMgr
TF_RunInputCPL
TF_CreateCategoryMgr
TF_CreateLangBarMgr

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ADATA
Size: 813KB - Virtual size: 2.2MB

IMAGE_SCN_MEM_READ