d878a3f2f1e8e3dba0768ff023d4b6501a7d5d718794d96620c85be85262af84 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d878a3f2f1e8e3dba0768ff023d4b6501a7d5d718794d96620c85be85262af84
Size

775KB
MD5

0f472276157399ee039b9d620304521d
SHA1

ce4e549b2f625cba6bf41e46127a26d7a6ee3dcd
SHA256

d878a3f2f1e8e3dba0768ff023d4b6501a7d5d718794d96620c85be85262af84
SHA512

86c5751a04b4e9d670cf91aed3627627953f616162001aa38096890f3c31c2858b4ba2520ec6cb7cf0462a26b23634a0f849b1a6f41615dd5aa409700ddbcbe6
SSDEEP

24576:VmEu3moh1jkMnVZHklW08nfGWoxwwwcjngU:AEuWorVnclW3eWawDcEU

Score

N/A

Malware Config

Signatures

Files

d878a3f2f1e8e3dba0768ff023d4b6501a7d5d718794d96620c85be85262af84
.exe windows x86

153a254cc8c485306ae1f149fc0e21ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
ReadConsoleA
CopyFileA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetDiskFreeSpaceW
GetFileAttributesA
VirtualAlloc
CompareStringA
CreateDirectoryA
WriteConsoleA
GetTimeFormatA
HeapAlloc
GetVolumeInformationA
LoadLibraryA
CreateFileMappingA
GetDriveTypeA

msdtcprx

DTC_XaEnd
DTC_XaOpen
DTC_XaPrepare
DTC_XaStart

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.odata
Size: 756KB - Virtual size: 763KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ