36f5b27bcffe371504b4e15b8ebbb89040446b80555e14434a3a3520141c82cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36f5b27bcffe371504b4e15b8ebbb89040446b80555e14434a3a3520141c82cc
Size

111KB
MD5

1d074721a465a439c6ec68b7da49878c
SHA1

9cae44590d84e252259a142d755ccf87065a4e1f
SHA256

36f5b27bcffe371504b4e15b8ebbb89040446b80555e14434a3a3520141c82cc
SHA512

55791f20ca0a15193954e0d168a277cc9a07d374010e6f87062d4485a1e70ae992c0ca8393991d339b9fffa4c668496bf352f57233260cd190db18bab0372dde
SSDEEP

3072:nbtv00SoZCf15LP9VsHK4M0VZCviEP6RUOALE0w:nJELPMHjdWvD6pAg

Score

N/A

Malware Config

Signatures

Files

36f5b27bcffe371504b4e15b8ebbb89040446b80555e14434a3a3520141c82cc
.exe windows x86

d7159e25f3bef580e7de63da36cc235d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeProcess
GetProcessHeap
GetDriveTypeA
Sleep
CreateWaitableTimerW
EndUpdateResourceW
lstrcmpiA
lstrcmpiA
CreateNamedPipeA
SetLastError
IsValidCodePage
GetStdHandle
HeapCreate
lstrcmpiA
lstrcmpiA
GetBinaryTypeW
GetModuleFileNameA
GetModuleHandleA
lstrcmpiA
lstrlenA
GetLogicalDrives
FileTimeToLocalFileTime
SuspendThread

printui

ConstructPrinterFriendlyName
bFolderRefresh
bPrinterSetup
PnPInterface

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rcrc
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xml
Size: 1024B - Virtual size: 650B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE