9b620369ba1fb7a7f562fd912cc041ad9318c4171608c939f55483266873a71d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b620369ba1fb7a7f562fd912cc041ad9318c4171608c939f55483266873a71d
Size

816KB
MD5

e6c6b21c11870bfcb7771b35541b68e2
SHA1

ea734db731b76e39087efd6d9da90982e5467566
SHA256

9b620369ba1fb7a7f562fd912cc041ad9318c4171608c939f55483266873a71d
SHA512

424f026ff15f4d9790968f3ecfd3abdcf6d47a5b13fff658a95e298f8932adda7e0fe066505b12171b86ac9abb074325e9a8db8169bc913a9bdb7577962acab0
SSDEEP

12288:MqKHvS010hR1R5Bw32NKjfWojXAkYaVIwIIisbAllaoBZfKdtNgs21bDpwQN+:6SV1tw3USWmAkYOPqaMZiutKQs

Score

N/A

Malware Config

Signatures

Files

9b620369ba1fb7a7f562fd912cc041ad9318c4171608c939f55483266873a71d
.exe windows x86

c7882243d26b9376b9588c078cf96fbf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
GetDriveTypeW
GetVolumeInformationW
FindResourceW
GetDriveTypeW
LoadLibraryA
GetDriveTypeW
VirtualAlloc
GetDriveTypeW
GetVolumePathNameA
lstrlenA
GetDriveTypeW
GetCurrentDirectoryW
GetDriveTypeW
OpenMutexA
MoveFileA
GetDriveTypeW

netshell

HrLaunchConnection
HrCreateDesktopIcon
HrRenameConnection
HrGetIconFromMediaType

Sections

.play
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.ydata
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ