d48fdf712aa89bbc59d3c7a1c4a4ac489ffec7160158641ba1e9fc9503fc45d1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d48fdf712aa89bbc59d3c7a1c4a4ac489ffec7160158641ba1e9fc9503fc45d1
Size

775KB
MD5

3a43ca05883afe48bab1632e77912ced
SHA1

64bcf5b72385481a6e939cfeeddda9ba8cff04ba
SHA256

d48fdf712aa89bbc59d3c7a1c4a4ac489ffec7160158641ba1e9fc9503fc45d1
SHA512

b18b5014c27b443cee944ba4b03e202a75eb6823ce9df8fb4452daef11fa8dab3c61e5d42d8f696ffa0aea13de26ec3f8ab89f649e79b90c05c2308ef98c8010
SSDEEP

24576:ybmEu3moh1jkMnVZHklW08nfGWoxwwwcjngU:DEuWorVnclW3eWawDcEU

Score

N/A

Malware Config

Signatures

Files

d48fdf712aa89bbc59d3c7a1c4a4ac489ffec7160158641ba1e9fc9503fc45d1
.exe windows x86

ae244ea314b9a8330a38f1b0529bed35

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
LoadLibraryA
GetPrivateProfileStringA
HeapAlloc
CompareStringW
FreeEnvironmentStringsW
WriteConsoleA
GetVolumeInformationA
CreateFileMappingW
VirtualAlloc
GetTimeFormatA
CopyFileA
GetFileAttributesA
ReadConsoleW
GetDriveTypeA
CreateDirectoryA
GetEnvironmentVariableA

msdtcprx

DTC_XaForget
DTC_XaStart
DTC_XaPrepare
DTC_XaOpen

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.odata
Size: 756KB - Virtual size: 763KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ