fd5610646fd35ae6d202340169da2c0fc05ba3a5de0a6b13f6a7a01aad31a490 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd5610646fd35ae6d202340169da2c0fc05ba3a5de0a6b13f6a7a01aad31a490
Size

302KB
MD5

c3e750bfbdb7050fbfdd5acf270eb76f
SHA1

b4b373b4fdd399fa575111288d4d21f8e56c7e4f
SHA256

fd5610646fd35ae6d202340169da2c0fc05ba3a5de0a6b13f6a7a01aad31a490
SHA512

ca603ff30b5afe044e828a3f406a925d933c89b45d3e7bb599dc6e99bfcd85ac4449c3df9f839358193da964e695a5cb3721aeb9385f369d8d6d07e6a23be32a
SSDEEP

6144:lId17NogVxEE7wuyKjX83wzZ3/Dj8DIpvQY3c0jiUFSOiV118dKFXSa:WdtdSBK8+OqQY3qPb1EKga

Score

N/A

Malware Config

Signatures

Files

fd5610646fd35ae6d202340169da2c0fc05ba3a5de0a6b13f6a7a01aad31a490
.exe windows x86

a7aee607ed3f6fbfa036a8ffe082ea78

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileSectionW
HeapCreate
InterlockedExchange
CloseHandle
GetPrivateProfileIntW
CreateDirectoryW
LoadLibraryExW
GetFullPathNameA
OpenMutexA
CloseHandle
GetModuleHandleA
CreateEventA
GetFileAttributesA
lstrcmpiW
GetDiskFreeSpaceA
CloseHandle
lstrcmpW
GetEnvironmentVariableA
GetDiskFreeSpaceA
GetPrivateProfileIntW
SetFilePointer
WaitForMultipleObjects
GetExitCodeThread

certmgr

DllUnregisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 295KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE