25f3cbc0d9196a59b132a535ec5f58a4048ff008b85ca5b5b248c4a5803dc9f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25f3cbc0d9196a59b132a535ec5f58a4048ff008b85ca5b5b248c4a5803dc9f9
Size

301KB
MD5

564858e507d5575cc1590a7e2b94fed0
SHA1

ad2193067091a7d9f677498282276c59ebdef23b
SHA256

25f3cbc0d9196a59b132a535ec5f58a4048ff008b85ca5b5b248c4a5803dc9f9
SHA512

3583f9a90bd30f5ba1e2a1d16d84d3654630eff77efe08c0e1df03123a1c08fea4d22644565b1015cfe603c0abc5a9c5743ed7f880c2c07d74276618a0f0b02b
SSDEEP

6144:Qt4CuR/qjbIrriU9rRB4fBACc3/lhGyuY9Cer+mGqlJ443iW:NZij0CUlH4yCEiyXrCgVZ

Score

N/A

Malware Config

Signatures

Files

25f3cbc0d9196a59b132a535ec5f58a4048ff008b85ca5b5b248c4a5803dc9f9
.exe windows x86

051a5d8e418c6e11e7ad014c46d5592b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
OpenMutexA
CreateNamedPipeW
lstrcmpiA
SetLastError
GetProcessHeap
GetModuleHandleA
GetDriveTypeW
HeapCreate
FileTimeToLocalFileTime
lstrcmpiA
Sleep
GetModuleFileNameA
WaitForMultipleObjects
lstrcmpiA
IsValidLocale
CreateMailslotA
lstrcmpiA
GetStdHandle
lstrcmpiA
GetLogicalDriveStringsW
lstrlenA
GetVolumePathNameW

scecli

InitializeChangeNotify
SceOpenPolicy
DeltaNotify
SceSysPrep

Sections

.text
Size: 2KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 294KB - Virtual size: 293KB

IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ