069c214cf9449224b8709b144bc0cf6eaaf3cf5d41e0acd9a17c0083c3e3251d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

069c214cf9449224b8709b144bc0cf6eaaf3cf5d41e0acd9a17c0083c3e3251d
Size

495KB
MD5

123271260c6235680f68e562c122e5c0
SHA1

a331d8a486e3f25da98f33917ee3636bed59ec5e
SHA256

069c214cf9449224b8709b144bc0cf6eaaf3cf5d41e0acd9a17c0083c3e3251d
SHA512

ea0bad2270615711127dbcd3bd4f6758662a921bcfc1486c9b6e990948ca3792c27e23243bc2de6ff0bdf5256646bd22e0d9bc96801c0b8446d4ba4c7b7b541d
SSDEEP

12288:IWIU4UzpDJLbArJuEz+Wj9aiMmvXLYLbZyz:/z2daN7Y7+4

Score

N/A

Malware Config

Signatures

Files

069c214cf9449224b8709b144bc0cf6eaaf3cf5d41e0acd9a17c0083c3e3251d
.exe windows x86

f3e86b3a084b38ade0aea46a3a894981

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
lstrcmpiA
lstrcmpiA
SetLastError
lstrcmpiA
lstrcmpiA
CreateNamedPipeA
GetBinaryTypeA
GetPrivateProfileStringA
IsValidCodePage
GetExitCodeProcess
CreateWaitableTimerW
TlsFree
GetDriveTypeA
GetStdHandle
HeapCreate
GetTickCount
lstrcmpiA
GetLogicalDrives
EndUpdateResourceA
GetModuleHandleA
lstrcatW
Sleep

ntmarta

EventGuidToName
AccFreeIndexArray
AccConvertAccessToSD
EventNameFree

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 488KB - Virtual size: 1016KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 607B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ