0ce219db9e16f7cb57c652257d199cbe30905b59825d09909420e68306225caf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ce219db9e16f7cb57c652257d199cbe30905b59825d09909420e68306225caf
Size

59KB
MD5

697556f97abe3e8ebba1c292fe0431a0
SHA1

2a21a08c59a5abc8c8e713f093528877577c5e8a
SHA256

0ce219db9e16f7cb57c652257d199cbe30905b59825d09909420e68306225caf
SHA512

76d7facffb452a857579e8520666c10df11a6e3281e14e3ef2c4120ddd3cf4f8fbf18206b6f19d825bfa3967443f3b8fda987675520592df4f7982bad92b3b9c
SSDEEP

1536:/R1hYqJDRN/odWjXkSl/dTk2mW57dtoqTul:p1+Ipo65l+2mW2mu

Score

N/A

Malware Config

Signatures

Files

0ce219db9e16f7cb57c652257d199cbe30905b59825d09909420e68306225caf
.exe windows x86

01d26385871b28dbce525a34f4389e6a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumePathNameA
GetModuleHandleA
GetLogicalDriveStringsA
SuspendThread
CreateMailslotA
lstrlenA
CreateNamedPipeA
lstrcmpiA
FileTimeToLocalFileTime
lstrcmpiA
DeleteFileA
GetDriveTypeW
HeapCreate
lstrcmpiA
SetLastError
IsValidLocale
GetModuleFileNameA
WaitForSingleObject
GetProcessHeap
lstrcmpiA
Sleep
lstrcmpiA
GetStdHandle

scecli

SceOpenPolicy
InitializeChangeNotify
DeltaNotify
SceSysPrep

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 796B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ