7d967c1c17b5bbea3971ce77ce9e3eb830491b56aecd14481c05c167ec780a37 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7d967c1c17b5bbea3971ce77ce9e3eb830491b56aecd14481c05c167ec780a37
Size

59KB
MD5

15f1a38f13341d15099d99efad79dc70
SHA1

ed18d03080796d6bf0514d65298bed6beefbad6b
SHA256

7d967c1c17b5bbea3971ce77ce9e3eb830491b56aecd14481c05c167ec780a37
SHA512

cc39ace66259fd7cc4a4d15f7a4078a4939de426172b04f0bd3002822c418b534dc30ec301e05c8f695bb2bc6f40b24e2750b44893ba7f89c33a350f48003e90
SSDEEP

1536:Q41YyJmPY7dnGSVGXrpvhspltvYsKzevjDL6ypDrjJD0Op6UA:V1YoqY0rpvhsplHvFJ0Op6U

Score

N/A

Malware Config

Signatures

Files

7d967c1c17b5bbea3971ce77ce9e3eb830491b56aecd14481c05c167ec780a37
.exe windows x86

5b09118e4dc681dc7edfcec31ed34420

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
lstrcmpiA
WaitForSingleObject
lstrcmpiA
GetStdHandle
lstrcmpiA
GetModuleHandleA
FileTimeToLocalFileTime
GetVolumePathNameA
SuspendThread
SetLastError
lstrcmpiA
GetProcessHeap
GetModuleFileNameA
lstrcmpiA
CreateMailslotA
GetLogicalDriveStringsA
Sleep
GetDriveTypeW
lstrlenA
IsValidLocale
CreateNamedPipeA
HeapCreate

scecli

SceSysPrep
DeltaNotify
SceOpenPolicy
InitializeChangeNotify

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 796B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ