64c42334650a428ee6b7e46e67674c9d06a3e88715dec5533ed5b8e986e1560a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64c42334650a428ee6b7e46e67674c9d06a3e88715dec5533ed5b8e986e1560a
Size

303KB
MD5

2fe3474e3c6b11b72416eea8d54ac540
SHA1

c9bc99fa51ad8b7c890a349f94f62ead288bcd72
SHA256

64c42334650a428ee6b7e46e67674c9d06a3e88715dec5533ed5b8e986e1560a
SHA512

e28dff885daa7a5ef1c3a0bf5acf1d5b82fbc2e404106e016e7e286139d69d3a5bae49b80b7fdded72b82979487c3286095d5a1fc18fb1cfada6a6522f827f65
SSDEEP

6144:eIX4EddcbBWnw5GRxZG7vb6nD1yCzKNMlZ8uLSDLrg+wIPRUUzM:LX4gdcbBL5GrSvy1yeKNM/bLyslIPRUX

Score

N/A

Malware Config

Signatures

Files

64c42334650a428ee6b7e46e67674c9d06a3e88715dec5533ed5b8e986e1560a
.exe windows x86

b8cc86b573f15a3964f3387e997aaf94

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
IsValidLocale
CreateEventA
CreateNamedPipeW
GetStdHandle
GetModuleFileNameA
lstrcpyA
HeapCreate
GetModuleHandleA
GetLogicalDriveStringsW
lstrcpyA
lstrcpyA
GetProcessHeap
FileTimeToLocalFileTime
GetCommState
DeleteFileA
GetVolumePathNameW
Sleep
lstrcpyA
GetStartupInfoA
lstrlenW
lstrcpyA
GetConsoleAliasW

sqlunirl

wsprintf_
_AddAtom_@4
_AppendMenu_@16
AbortSystemShutdown_

Sections

.text
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.RDATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ORPC
Size: 294KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.PDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ