acdb96f3262cc2c5ba8c52621a783a6afe259b7f5d04668c876aaf7dbb81d7f6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

acdb96f3262cc2c5ba8c52621a783a6afe259b7f5d04668c876aaf7dbb81d7f6
Size

274KB
MD5

3ef72b776eb8887bc6169d06bd08a15d
SHA1

7b8d574e2e7241c26003b9f3666337163ccef5c0
SHA256

acdb96f3262cc2c5ba8c52621a783a6afe259b7f5d04668c876aaf7dbb81d7f6
SHA512

5f35237430ae6ec5ff8b0f90fcd04e95a8cd6d215b6550f8f783cb5d06fc9a4aacfcf10de9c8539e3bf3a6cfeb4f77e43c886b8bfd748df7990e71a15b003a8c
SSDEEP

6144:JacneomX/y792N6wy0EVm9faEfEiSLfUcWCjgSEM7ZRpFjJ1BlK:Ja1y7csLs9fPfKfoyEk59HK

Score

N/A

Malware Config

Signatures

Files

acdb96f3262cc2c5ba8c52621a783a6afe259b7f5d04668c876aaf7dbb81d7f6
.zip
Info.Pdf________________________________________________________________.exe
.exe windows x86

453c0046acfd7f7c80eeaa533aead542

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDiskFreeSpaceA
GetModuleHandleA
GetPrivateProfileIntW
GetPrivateProfileIntW
GetDiskFreeSpaceA
OpenMutexA
lstrcmpiA
InterlockedExchange
GetExitCodeProcess
WaitForMultipleObjects
SetEnvironmentVariableW
Sleep
GetPriorityClass
CreateEventA
Sleep
GetPrivateProfileSectionA
CreateDirectoryW
LoadLibraryExW
Sleep
lstrcmpA
HeapCreate
SetFilePointer
GetFileAttributesA

catsrv

CreateComponentLibraryTS
OpenComponentLibraryTS
GetCatalogCRMClerk
DllCanUnloadNow

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 300KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE