34c6e9e9349781fb8a948af01d8616dd660654f3bc522661ac5918b17fc1412a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

34c6e9e9349781fb8a948af01d8616dd660654f3bc522661ac5918b17fc1412a
Size

298KB
MD5

2d742bb7970626bfe4bd048a83bfc42e
SHA1

19e3ba34941ea471589919247cbcdad51fbca1fc
SHA256

34c6e9e9349781fb8a948af01d8616dd660654f3bc522661ac5918b17fc1412a
SHA512

ae7b283f54a67b6ad4bf82bed86cad6acd9a5934a2c90f72c6325297e4dcadad6e3d83dbe53e72ac9295bb7b8245994f6a0540a55904dab6b1b0385a6f7a72a6
SSDEEP

6144:/OCEVPodSq5rgVhWwh5GiVmKiE8j4w6+TjtrnETVqz:/IxgdgVhWwh5h0nE9w6+TJrETQ

Score

N/A

Malware Config

Signatures

Files

34c6e9e9349781fb8a948af01d8616dd660654f3bc522661ac5918b17fc1412a
.exe windows x86

c8e9b08d26cc295c06e5bf8d5d0d9f15

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EndUpdateResourceA
lstrcmpiA
lstrcatW
GetBinaryTypeA
GetStdHandle
lstrcmpiA
CreateWaitableTimerW
IsValidCodePage
lstrcmpiA
GetExitCodeProcess
GetModuleHandleA
lstrcmpiA
lstrcmpiA
TlsFree
GetLogicalDrives
SetLastError
GetPrivateProfileStringW
HeapCreate
GetDriveTypeA
CreateNamedPipeA
GetTickCount
Sleep
FileTimeToLocalFileTime

ntmarta

AccConvertAccessToSD
EventNameFree
AccFreeIndexArray
EventGuidToName

Sections

.text
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 290KB - Virtual size: 290KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 607B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ