24ef333b72b823faad1049ca63f4d20ec27daa673e4aa794ab91aa896b933adf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24ef333b72b823faad1049ca63f4d20ec27daa673e4aa794ab91aa896b933adf
Size

503KB
MD5

7d631522fc221e933d1404714dd2b0d0
SHA1

382ece3c9cb69dab8d55c14362619bf6183708cb
SHA256

24ef333b72b823faad1049ca63f4d20ec27daa673e4aa794ab91aa896b933adf
SHA512

0bd8803a974076af620d6004fb138403fd84ec3fe58078562eb21aecd3aba417f013be052734328f70319cabdf3127866f8e00d14a83329136856f1e99a41782
SSDEEP

6144:feEyFl6mg3fCsWgPCJTGT41PFZ7f9EzkIGdKThTKnaVPh9sR9Qku4Qa9IpeamcPK:2F6m2fpRPkTk0PFZPIGd1QoaXDo/69K

Score

N/A

Malware Config

Signatures

Files

24ef333b72b823faad1049ca63f4d20ec27daa673e4aa794ab91aa896b933adf
.exe windows x86

5d774825a1c5d640323ed885291b99c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleAliasW
GetProcessHeap
lstrlenA
lstrcmpiW
Sleep
GetModuleHandleA
GetCommState
lstrcmpiW
GetLogicalDriveStringsW
CreateMailslotW
SetLastError
GetVolumePathNameW
GetStdHandle
GetStartupInfoA
lstrcmpiW
HeapCreate
lstrcmpiW
lstrcmpiW
FileTimeToLocalFileTime
DeleteFileA
IsValidLocale
CreateNamedPipeW
GetModuleFileNameA

sqlunirl

AbortSystemShutdown_
wsprintf_
_AppendMenu_@16
_CallMsgFilter_@8

Sections

.text
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.RDATA
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ORPC
Size: 496KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.PDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ