546eb7ace8171db7d74790b92f2ca52e37c6a0e88592ea1203f4c096eca603c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

546eb7ace8171db7d74790b92f2ca52e37c6a0e88592ea1203f4c096eca603c0
Size

806KB
MD5

76b2a5943cedc9bb246cf4b4c71f10cd
SHA1

bcbce223aa8cb3cfcd1014703b52843597e8fccc
SHA256

546eb7ace8171db7d74790b92f2ca52e37c6a0e88592ea1203f4c096eca603c0
SHA512

266bc89ed99cf6c3c8dfad42398843557be39106396629ad8ef14ad38186ef65ea7529d05c0348257d6844838b6678206be655c9ba6c029c4318e82b281828a5
SSDEEP

12288:pFYRzNOaqRiIkosNlRsrUQg5lAAmj3ipcQy3/3v1FvKLQeJ2ACybDjznLF2Ic:XgbqE9oUuUQ9F3ipc/3n/LeJ2ACmDB

Score

N/A

Malware Config

Signatures

Files

546eb7ace8171db7d74790b92f2ca52e37c6a0e88592ea1203f4c096eca603c0
.exe windows x86

50906f5fce9183e80921f6cbe2fc6aad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumePathNameW
CreateEventA
IsValidLocale
GetProcessHeap
DeleteFileA
GetStartupInfoW
lstrcpyW
GetStdHandle
FileTimeToLocalFileTime
lstrcpyW
GetModuleFileNameA
VirtualAllocEx
GetModuleHandleA
GetCommState
lstrcpyW
GetMailslotInfo
GetLocaleInfoA
SetCurrentDirectoryA
lstrlenW
SetLastError
lstrcpyW
lstrcpyW
SetConsoleTitleA

termmgr

DllCanUnloadNow
DllUnregisterServer
DllGetClassObject
DllRegisterServer

Sections

.text
Size: 3KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Pdata
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ