0ce3452059ee6abe2cb96b892082f747715c00b215ba17151c0f756493dd69af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ce3452059ee6abe2cb96b892082f747715c00b215ba17151c0f756493dd69af
Size

58KB
MD5

3c90d2e92e2c8cac3fad6479413a3e87
SHA1

a60a62624e1298ce7aa0f884dbed4e8b07021466
SHA256

0ce3452059ee6abe2cb96b892082f747715c00b215ba17151c0f756493dd69af
SHA512

9ef3028897e9b66501cc2994dc8d782f0c5c5d8d9a73a9748d2f2eb84cd08d2bd24fab3f80a40f8cdd828984f7336431f0148182ea142c89cb9e92f5e142c444
SSDEEP

1536:Ck03Um+0/mM2Zp5jtDIo6VNWxfrV1IPau:Ck0km+uuttgNWx/IPa

Score

N/A

Malware Config

Signatures

Files

0ce3452059ee6abe2cb96b892082f747715c00b215ba17151c0f756493dd69af
.exe windows x86

14f6ee221b3d1fb80f375dd614e46ebb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
CreateNamedPipeA
FileTimeToLocalFileTime
GetProcessHeap
Sleep
lstrcmpiA
GetStdHandle
GetExitCodeProcess
GetLogicalDrives
HeapCreate
lstrcmpiA
GetModuleFileNameA
SuspendThread
GetModuleHandleA
lstrcmpiA
GetBinaryTypeW
lstrcmpiA
EndUpdateResourceW
CreateWaitableTimerW
lstrlenA
SetLastError
lstrcmpiA
IsValidCodePage

printui

bPrinterSetup
bFolderRefresh
ConstructPrinterFriendlyName
PnPInterface

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rcrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xml
Size: 1024B - Virtual size: 643B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE