209e0f4cbd6801990cde510be0e4802a4bddc85eddc07a70419c10897db0a738 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

209e0f4cbd6801990cde510be0e4802a4bddc85eddc07a70419c10897db0a738
Size

114KB
MD5

1f786062f5374f248f2b0dd7e380e240
SHA1

4896e604ebd430437c4508769e1ce6709556bb84
SHA256

209e0f4cbd6801990cde510be0e4802a4bddc85eddc07a70419c10897db0a738
SHA512

e367f68945bb99dc0d8e94c2db8ee3412636e2342ed19abe5ec64bab38d832e2d65d92307d16001d257a9a6f2ecdf60ae841fd78d0945aefc580130a476ed3af
SSDEEP

3072:ciJokPNWsU+iHrgMOCdD/f1UrT/w5owxAe:cFIsrLOYbu//29Ae

Score

N/A

Malware Config

Signatures

Files

209e0f4cbd6801990cde510be0e4802a4bddc85eddc07a70419c10897db0a738
.exe windows x86

3c9e560f54988dda969489f8cf112ad3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
DeleteFileW
HeapFree
GetModuleHandleW
SetEnvironmentVariableA
HeapCreate
SetFilePointer
IsValidCodePage
GetStringTypeW
GetShortPathNameW
DeleteFileW
GetLastError
lstrcatA
GetVersion
GetStdHandle
GetExitCodeProcess
GetStringTypeW
GetConsoleTitleA
DeleteFileW
GetTickCount
lstrcmpiA
HeapAlloc
GetDriveTypeA

mstscax

DllRegisterServer
DllGetTscCtlVer
DllCanUnloadNow
DllUnregisterServer

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dataz
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rs
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ