55e200407c83ddd9cc9ecc6691251854f21eff707e22f5b45de99d2b71ea5a51 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55e200407c83ddd9cc9ecc6691251854f21eff707e22f5b45de99d2b71ea5a51
Size

58KB
MD5

1306bf89af0fe3c5dcb32d1914178f19
SHA1

a079c030c1b6f24b778921393a1e82b060a948ae
SHA256

55e200407c83ddd9cc9ecc6691251854f21eff707e22f5b45de99d2b71ea5a51
SHA512

6476770ed666f76e4c25fdfd3d524546dd20a44e3a3350d0dec7d4a800b92125724dbbd5b9c47ab225df852899b21bccbfa11073344e0e31a05ff6dba979a0f6
SSDEEP

1536:ORGC4MA8Rti2cuDwC9jU+gaEvhoCqxau:ORGC4MxYLx+6hyxa

Score

N/A

Malware Config

Signatures

Files

55e200407c83ddd9cc9ecc6691251854f21eff707e22f5b45de99d2b71ea5a51
.exe windows x86

ed0f3b7bba34108d227383c45bff5cf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
lstrcmpiA
IsValidCodePage
lstrcmpiA
GetLogicalDrives
GetStdHandle
CreateWaitableTimerW
lstrlenA
SetLastError
Sleep
GetModuleFileNameA
FileTimeToLocalFileTime
EndUpdateResourceW
HeapCreate
GetModuleHandleA
CreateNamedPipeA
GetProcessHeap
GetBinaryTypeW
GetExitCodeProcess
lstrcmpiA
lstrcmpiA
GetDriveTypeA
SuspendThread

printui

bPrinterSetup
bFolderRefresh
ConstructPrinterFriendlyName
PnPInterface

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rcrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xml
Size: 1024B - Virtual size: 643B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE