17c9934c5e0582a1c817d61acf8d3c58f5215a3c371d414bec28c83de56715cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17c9934c5e0582a1c817d61acf8d3c58f5215a3c371d414bec28c83de56715cc
Size

80KB
MD5

5b5039aea7585eb52d5cb1eb480b9e98
SHA1

d6a9560fc511afe0bae6d9f6d985a9f91d482d9c
SHA256

17c9934c5e0582a1c817d61acf8d3c58f5215a3c371d414bec28c83de56715cc
SHA512

7c23bee3e83d537d9d0fdccbf3d4c10f29cc09251d8f99b7859286110b6925cbe0b2537bdf581e60f5ed7e1e29f2bad2f50ecd8497d6d6d735c59ad6d835148d
SSDEEP

1536:bXXXjIiDc8aWGAqQ7/5tDzgqYzhcyuRcmphF1lFVStbjqtQK:kWhbpzQqRc8hBFMvGQK

Score

N/A

Malware Config

Signatures

Files

17c9934c5e0582a1c817d61acf8d3c58f5215a3c371d414bec28c83de56715cc
.exe windows x86

e04547420f3fe6dd80cade4c03bc5a1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
OpenDataFile
CreateProcessA
FindFirstVolumeMountPointW
GetCurrentThread
GlobalGetAtomNameW
SetConsoleNumberOfCommandsW
CreateProcessInternalA
CreateFileMappingW
SetComputerNameA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE