f5078b7728c2213c9e43eb84a0579d66a5eaf83906ed8c35a4b37a114ffb3013 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5078b7728c2213c9e43eb84a0579d66a5eaf83906ed8c35a4b37a114ffb3013
Size

809KB
MD5

23e2ee31bb2407a6b0ab3ead4d2b551b
SHA1

cce03fb1105ad511080c31679d268000edba4826
SHA256

f5078b7728c2213c9e43eb84a0579d66a5eaf83906ed8c35a4b37a114ffb3013
SHA512

2decaa9e7ab9135bc84e46b0dc4e1d3a6709b8ff7334687cc51bca6fa885da3df14f79549e748c9c60eccdcb6352dda0826f4ca6f5dd8eca6cbd9cd1be0886cc
SSDEEP

12288:+rhoUabOoAhWncAcwhztOV0bZBN7PTnmCqVMVFduNVwuLQ98mhQ+XCbWKWY:ynduhztOViBN7PTmxVMVvufs9tmk0WK

Score

N/A

Malware Config

Signatures

Files

f5078b7728c2213c9e43eb84a0579d66a5eaf83906ed8c35a4b37a114ffb3013
.exe windows x86

3d9b2eb033d8b82a92040131cb95dd06

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
GetCurrentDirectoryW
MoveFileW
IsBadStringPtrA
GetLastError
CreateSemaphoreA
GetLastError
LoadLibraryW
GetModuleHandleA
VirtualProtectEx
GetLastError
GetLastError
GetFullPathNameA
GetLogicalDriveStringsA
GetLastError
GetLastError
GetLastError

onex

OneXQueryStatistics
OneXUpdatePortProfile
OneXQueryState
OneXUIResponse

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE