068bcbb1c362a97c11f0f9728a2c55b09bcb6ca6e8b79f401d82de8daffece98 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

068bcbb1c362a97c11f0f9728a2c55b09bcb6ca6e8b79f401d82de8daffece98
Size

58KB
MD5

0928ba27dcb5f90cf5c6ffa69050d5e0
SHA1

e4cbef141ef4ffed771bece2c8f042e1d6beaa80
SHA256

068bcbb1c362a97c11f0f9728a2c55b09bcb6ca6e8b79f401d82de8daffece98
SHA512

c4f3eb7eb8eccde59c312c082aa239a985d8865c3deb6be1a049e803c80fe60f33257742d8d324bd8b826eb90000bdcaefa4d7031ef36d6a69403f7d350e6baf
SSDEEP

1536:KMsqqFsVRMbfucsAcxp4FyE3k5ZFaKb22J3imJs1y0w2:KHqqm7M7u5Qk5rJOy0w

Score

N/A

Malware Config

Signatures

Files

068bcbb1c362a97c11f0f9728a2c55b09bcb6ca6e8b79f401d82de8daffece98
.exe windows x86

ca6f91ec0309bb29499539ebe41cbee9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
lstrcmpiA
HeapCreate
FileTimeToLocalFileTime
GetModuleFileNameA
GetProcessHeap
lstrlenA
GetBinaryTypeW
IsValidCodePage
GetLogicalDriveStringsA
SuspendThread
lstrcmpiA
GetStdHandle
lstrcmpiA
SetLastError
WaitForSingleObject
EndUpdateResourceW
CreateWaitableTimerW
GetDriveTypeW
lstrcmpiA
CreateNamedPipeA
GetModuleHandleA
Sleep

printui

bPrinterSetup
PrinterPropPageProvider
PnPInterface
bFolderRefresh

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rts
Size: 1024B - Virtual size: 650B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ