85e2f3c38ed7468ef1d7210025338a45a4a341127b4b09d2f416c587c0cf5b30 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85e2f3c38ed7468ef1d7210025338a45a4a341127b4b09d2f416c587c0cf5b30
Size

812KB
MD5

f90109db965c6f837362085ddabaedf3
SHA1

a740eafb62deba3d6b483be37c740961b7cdce30
SHA256

85e2f3c38ed7468ef1d7210025338a45a4a341127b4b09d2f416c587c0cf5b30
SHA512

81706d9250938c54a798baaafd5140522c51e93b7856bc8ff6d4fe11f36e57a883dfa7db437d01e9e9c43a27e8c070c3eca6582cc488fc5b1732f3e8bdeea010
SSDEEP

24576:B3yNnru+k5kMLTZwGOMtNU/Oh0hZfgOJ5vtPyzzoR3333333333333333:BCJy+yfqiUDZoOJ5vQ3oR3333333333H

Score

N/A

Malware Config

Signatures

Files

85e2f3c38ed7468ef1d7210025338a45a4a341127b4b09d2f416c587c0cf5b30
.exe windows x86

d020708862d482945eb2e89b4b16f75c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCurrentDirectoryA
GetStringTypeA
LeaveCriticalSection
DeleteFileA
GetTickCount
lstrcpyW
SetEndOfFile
HeapCreate
CreateMutexW
SetVolumeLabelA
LoadLibraryA
SetEnvironmentVariableA
GetProcessVersion
GetCurrentProcess
EnterCriticalSection
OpenThread
GetPrivateProfileIntW
GetConsoleTitleA
FoldStringA

activeds

ADsGetLastError
ConvertSecurityDescriptorToSecDes
ADsSetLastError
ADsGetObject

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 726B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 801KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ