d362efdbce92c03e4b2e182f91a52e3c38bf44e53c3b95ed05d7849f28b49115 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d362efdbce92c03e4b2e182f91a52e3c38bf44e53c3b95ed05d7849f28b49115
Size

810KB
MD5

ab2611208c88a7ef36c66fd5b87094a6
SHA1

befee5bd5c22e964c082fde6e1e4fcf4bbf89480
SHA256

d362efdbce92c03e4b2e182f91a52e3c38bf44e53c3b95ed05d7849f28b49115
SHA512

4c2f20154ab42586d496df1ccd785c2432a569d491f5ee9c00b9edd42cbb7ed791aefc9c16ca7134a88b2a177e2faeeb1e5804b2583860b96076e20ddc88cf4d
SSDEEP

12288:BQ4bOE4vK5Z9nD4cH5LBcl3Nuu2vUduTyZKh1+A+8vPUs25EafnTNrshltp49Ydl:9OpgZ3LMculduTyZ0+uPUs25ESsh7o8

Score

N/A

Malware Config

Signatures

Files

d362efdbce92c03e4b2e182f91a52e3c38bf44e53c3b95ed05d7849f28b49115
.exe windows x86

e5e46e480e0c912610a8e22c02cbd7b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CreateSemaphoreA
MoveFileW
GetLastError
GetConsoleTitleW
GetCurrentDirectoryW
VirtualProtectEx
GetFullPathNameA
GetLastError
LoadLibraryW
GetLastError
GetLastError
GetLastError
GetLogicalDriveStringsA
GetModuleHandleA
GetLastError
lstrcpyA

onex

OneXQueryStatistics
OneXUpdatePortProfile
OneXQueryState
OneXUIResponse

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE