108f7de9c075b0b1d2e8cb4635c9ad851346a1e832a04b28bfacbf6b870d23dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

108f7de9c075b0b1d2e8cb4635c9ad851346a1e832a04b28bfacbf6b870d23dd
Size

828KB
MD5

0e9b154fef430b233146105de3d09526
SHA1

9ae9c2d302db7f368aacf00ca16a2d682d9af1a4
SHA256

108f7de9c075b0b1d2e8cb4635c9ad851346a1e832a04b28bfacbf6b870d23dd
SHA512

5a2f3520cfef2e1d4d49a800fadad73d9fd088b3d7789dd412082f3d01b5f3ffc045f12bcc4ee3f33a4e73f55ec402b1afcf758d1f76bd52af3a3480e13920a6
SSDEEP

24576:L8828LCmlilVHXFSDBEDnv7R5kgMHuBk:LRHeDdXFS9kv7TkbHuu

Score

N/A

Malware Config

Signatures

Files

108f7de9c075b0b1d2e8cb4635c9ad851346a1e832a04b28bfacbf6b870d23dd
.exe windows x86

683d74b7adb0f1bdc9c81dc0e857bc49

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetTimeFormatA
GetModuleHandleA
CompareStringW
ReadConsoleW
GetVolumeInformationA
HeapFree
GetEnvironmentVariableW
lstrcmpW
lstrcatA
CreateMailslotW
WriteFile
VirtualProtect
GetStringTypeA
GetLastError
GetProcessHeap
GetPrivateProfileIntW
GetCurrentDirectoryA
GetDiskFreeSpaceW
GetShortPathNameA

es

NotifyLogoffUser
ServiceMain
NotifyLogonUser
LCEControlServer

Sections

.text
Size: 20KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 1024B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata
Size: 804KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ