1732c53b31c58146064d81c6a1d39ead3d4021c9188b14d9d709944cd2363183 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1732c53b31c58146064d81c6a1d39ead3d4021c9188b14d9d709944cd2363183
Size

113KB
MD5

5c81677a060eca0586b9ebd6b1626cb0
SHA1

f107a8cb02b38ec044ac1ccb2a5f6f99ec348066
SHA256

1732c53b31c58146064d81c6a1d39ead3d4021c9188b14d9d709944cd2363183
SHA512

7b17cf05901d9f76239c56c98af4fd12db1954ea2321e8688c6731e19f41f9e3551da5ad63fc13caacd664738f85e2f5d24dc1c306f12bc953be7c1d09d04255
SSDEEP

3072:vOySzqzda5gU1fSUmowzfysZyHyR6ZQr/30w:BJEfvyzfyssHyRF/3

Score

N/A

Malware Config

Signatures

Files

1732c53b31c58146064d81c6a1d39ead3d4021c9188b14d9d709944cd2363183
.exe windows x86

06430a7597bd1c9abfe9d3e365c43b3a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
GetLogicalDrives
EndUpdateResourceW
CreateNamedPipeA
lstrcmpiA
lstrlenA
Sleep
GetBinaryTypeW
HeapCreate
FileTimeToLocalFileTime
lstrcmpiA
lstrcmpiA
GetDriveTypeA
SuspendThread
GetStdHandle
SetLastError
CreateWaitableTimerW
GetModuleFileNameA
GetModuleHandleA
lstrcmpiA
GetProcessHeap
IsValidCodePage
GetExitCodeProcess

printui

PnPInterface
bFolderRefresh
ConstructPrinterFriendlyName
bPrinterSetup

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rcrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rts
Size: 1024B - Virtual size: 650B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ