372fd02ba6c73142e4c7e74d7ddb70972da599b883bccf5f77d5a13da7082854 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

372fd02ba6c73142e4c7e74d7ddb70972da599b883bccf5f77d5a13da7082854
Size

114KB
MD5

995ab1a6578384586468bd6816241f6d
SHA1

1910b195f12ad26717b5a4f36058742905206305
SHA256

372fd02ba6c73142e4c7e74d7ddb70972da599b883bccf5f77d5a13da7082854
SHA512

4fc4a79000c9b03ff525b42dbd7161bbfd0b55e1a592ff2906b55ff4445d6ca19ec8b638011043d17a3986a48bc9c6a23e4fa85e5928b53f25c1c7e97780cefa
SSDEEP

3072:C1R87wzSFtaiUGdqLW3Myp4hDpIE9Wfg+wej/00w:AAw+ymdq6cKEWgA/0

Score

N/A

Malware Config

Signatures

Files

372fd02ba6c73142e4c7e74d7ddb70972da599b883bccf5f77d5a13da7082854
.exe windows x86

6ab8d52b2258f2a8d4b14270b3796fca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetBinaryTypeW
GetModuleHandleA
FileTimeToLocalFileTime
EndUpdateResourceW
GetDriveTypeA
CreateWaitableTimerW
CreateNamedPipeA
SuspendThread
SetLastError
HeapCreate
GetProcessHeap
lstrcmpiA
GetLogicalDrives
lstrcmpiA
GetStdHandle
lstrcmpiA
lstrlenA
GetModuleFileNameA
lstrcmpiA
IsValidCodePage
Sleep
lstrcmpiA
GetExitCodeProcess

printui

bFolderRefresh
ConstructPrinterFriendlyName
PnPInterface
bPrinterSetup

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rcrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xml
Size: 1024B - Virtual size: 650B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE