8fd63ac7ec73691a0208f688d0f06f52d57e6abb9866623af58c95f8c16e1a8d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8fd63ac7ec73691a0208f688d0f06f52d57e6abb9866623af58c95f8c16e1a8d
Size

298KB
MD5

24388f1b1438f7d81430826cee93ce70
SHA1

41e146d918eb3f9b1e4dced7b0c6b45fc725c835
SHA256

8fd63ac7ec73691a0208f688d0f06f52d57e6abb9866623af58c95f8c16e1a8d
SHA512

c1b3be0c94c2b4f68da161a10bfb1dc8e69353525ac5e8ff1db3a04d6a05a4da9bec98a7033738dd6af175ef272474c98d128017aaa80013eb208e4b32cfcef8
SSDEEP

6144:UW9d/FtIQlmuzlQi+5js7EWf6YJvPbZTeu5OWX+q1SUW8AfC:jrdGQwuzlZ+GQYFPVTeu5flQD8Aq

Score

N/A

Malware Config

Signatures

Files

8fd63ac7ec73691a0208f688d0f06f52d57e6abb9866623af58c95f8c16e1a8d
.exe windows x86

56cda362235dfcdc3847066f526bb3c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
SetVolumeLabelA
FindNextVolumeW
GetStringTypeA
GetModuleHandleW
FindFirstVolumeW
GetCurrentDirectoryW
CreateSemaphoreA
HeapCreate
GetFullPathNameW
CopyFileA
CreateFileMappingA
GetVolumePathNameW
CloseHandle
CloseHandle
GetModuleHandleA
GetFullPathNameW
ReadConsoleW
CloseHandle
GetConsoleMode
GetEnvironmentVariableW
Sleep
CreateFileA

dbghelp

ImageRvaToSection
ImageNtHeader
ImageRvaToVa
FindFileInPath

Sections

.text
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.RES
Size: 292KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avdr
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE