e8f830ab9d057f9eb6fb384d94baa11039ed98ad62a50365786d8069273478dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e8f830ab9d057f9eb6fb384d94baa11039ed98ad62a50365786d8069273478dd
Size

810KB
MD5

42d40360d89661dcee5e326dbea18c70
SHA1

335bc897bb088a40af2a0bb5264548176117edfe
SHA256

e8f830ab9d057f9eb6fb384d94baa11039ed98ad62a50365786d8069273478dd
SHA512

43c052897974eb94d3598526ed0a9549a98fc2e3776880aaf0defe6829c148f156fdce7a44dcd254936e3650bfcc8963737401f5e6ecbd90051c37c816744dfa
SSDEEP

24576:pSvOZK+2d9A+zjUzQqcqCnbOz37v9PjGKFHDne145+Hh:8v8bE9A+CQqctOlXFHDeuQh

Score

N/A

Malware Config

Signatures

Files

e8f830ab9d057f9eb6fb384d94baa11039ed98ad62a50365786d8069273478dd
.exe windows x86

5502772f357925da8c97bf64cdf7afde

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetLogicalDriveStringsA
GetLastError
VirtualProtectEx
GetLastError
SetCurrentDirectoryA
lstrcpyA
CreateSemaphoreA
GetLastError
MoveFileW
GetLastError
GetLastError
GetFullPathNameA
GetLastError
IsBadStringPtrW
GetModuleHandleA
LoadLibraryExW

printui

bPrinterSetup
bFolderRefresh
vDocumentDefaults
vQueueCreate

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rdata
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ