63af0165b2dfdf3ce4389a7c66e806f05bc527da9362b5be19bdfa044e8a8ac0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63af0165b2dfdf3ce4389a7c66e806f05bc527da9362b5be19bdfa044e8a8ac0
Size

832KB
MD5

0f6785a771869d5364882c8b826cef20
SHA1

06d0dd3ca7c050bce4b494ebfcf09e0754c15508
SHA256

63af0165b2dfdf3ce4389a7c66e806f05bc527da9362b5be19bdfa044e8a8ac0
SHA512

a2fe9c1aef2ad8ef6bcccc6cb1e9cb847f913fedfb396dcc090ee2c007f6962cc9e81273cd766a0ab7ef7593d36462caf252d912cc21751f83008bbc5ac3bc91
SSDEEP

24576:I+6++w8uWiZc+yxjrlSyIImURfI9fkA4TQ7p8hPaQ:I3+/c+Cjrl9jxMfkAsQ7pWPn

Score

N/A

Malware Config

Signatures

Files

63af0165b2dfdf3ce4389a7c66e806f05bc527da9362b5be19bdfa044e8a8ac0
.exe windows x86

ec4beb82c9b3a7617979a01818a0c832

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDiskFreeSpaceW
GetTimeFormatA
ReadConsoleW
CopyFileA
HeapAlloc
CompareStringW
WriteConsoleA
CopyFileA
VirtualAlloc
CreateDirectoryA
FreeEnvironmentStringsW
GetVolumeInformationA
CreateFileMappingA
LoadLibraryA
GetFileAttributesA
GetEnvironmentVariableA
GetDriveTypeA

msdtcprx

DTC_XaOpen
DTC_XaStart
DTC_XaForget
DTC_XaPrepare

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 692B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.odata
Size: 813KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ