6ef0c42f5c5538ce3891434ac0cbcaea2f935d6ce11a345cace59d47c18f52c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6ef0c42f5c5538ce3891434ac0cbcaea2f935d6ce11a345cace59d47c18f52c2
Size

830KB
MD5

4f11c2482343ed91e42cb10ccbd8fe36
SHA1

f5228b7690b68ecc47faaa1adcb4456b31c88dc4
SHA256

6ef0c42f5c5538ce3891434ac0cbcaea2f935d6ce11a345cace59d47c18f52c2
SHA512

7810310cc3b45179d0cd283fa820ed895f10aee903227d716d49c4187db698d019b1094c67869a2d1969921269e6861dcd95b54403a383fbcef8366c40b18694
SSDEEP

12288:k2Hv81RNNzyCPPwsU6U0EFzpYhdikeT5BA0Zg5nZC4lP4DEDTst9jVUkSNrCVMS+:7ExECPhEBpCdlgjMCK3DAmhwwT

Score

N/A

Malware Config

Signatures

Files

6ef0c42f5c5538ce3891434ac0cbcaea2f935d6ce11a345cace59d47c18f52c2
.exe windows x86

3a43c60ec8f30fa9551557adf8b54581

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
ResumeThread
GetDiskFreeSpaceA
MoveFileExA
EnumCalendarInfoW
GetStdHandle
GetConsoleAliasA
HeapCreate
CreateEventA
GetFullPathNameA
GetModuleHandleA
GetCommandLineA
OpenMutexA
GetLocaleInfoW
CompareStringW
GetCurrentProcess
CreateSemaphoreW

hnetcfg

HNetGetFirewallSettingsPage
HNetGetSharingServicesPage
HNetFreeSharingServicesPage
HNetDeleteRasConnection

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_MEM_WRITE

.adata
Size: 813KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ