7e8ca038bdb92a9f8b9b135776e33e5330f70eebc206ebd8b3e57cd656d8d8a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7e8ca038bdb92a9f8b9b135776e33e5330f70eebc206ebd8b3e57cd656d8d8a9
Size

58KB
MD5

b6eb6f6038c42d125b8f469a33da79da
SHA1

38214bbd3b34076f3f3c2ec316c6c957484b0dd0
SHA256

7e8ca038bdb92a9f8b9b135776e33e5330f70eebc206ebd8b3e57cd656d8d8a9
SHA512

f4241f9d4e4088b6ae0216651a3373d7bc165e1ad90beb6b1f8c31c85c32a15dfb24dc70a8dbf907fce0e297bedbdd3d0d5822958045f458a7833b9307fe9408
SSDEEP

768:e5fDueo4O1OKnMVRqTIayvy9JEEmvxuOD2HzzlLNgc2lj+HsckvnL5CuPAoojOGM:Leo4wnyqv9mvxu4G9Ngc+y4guI7f

Score

N/A

Malware Config

Signatures

Files

7e8ca038bdb92a9f8b9b135776e33e5330f70eebc206ebd8b3e57cd656d8d8a9
.exe windows x86

f7cfc20501fe0855ec1069edeb68a895

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateNamedPipeA
lstrcmpiA
OpenMutexA
DeleteFileA
lstrcmpiA
GetModuleFileNameA
GetDriveTypeW
Sleep
IsValidLocale
SetLastError
GetModuleHandleA
lstrcmpiA
lstrcmpiA
lstrlenA
GetVolumePathNameA
GetStdHandle
CreateMailslotA
GetLogicalDriveStringsA
GetProcessHeap
lstrcmpiA
FileTimeToLocalFileTime
HeapCreate
WaitForMultipleObjects

scecli

DeltaNotify
SceSysPrep
InitializeChangeNotify
SceOpenPolicy

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ