31b229833a74865f0c9e5cdb6c40bf4c2cd2aab75b1cc5f146e1c342c5f61213 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

31b229833a74865f0c9e5cdb6c40bf4c2cd2aab75b1cc5f146e1c342c5f61213
Size

58KB
MD5

a81aada5d45831a14cf5f1f5dea2332f
SHA1

8e8d330125a7b6c2197306a1e79256ebd49947c3
SHA256

31b229833a74865f0c9e5cdb6c40bf4c2cd2aab75b1cc5f146e1c342c5f61213
SHA512

dff34c1f0ea803cf9ef207d7314b5a019a383fd1110b43a9f83401c5e4ab3d544b081e0d6f9a2bdaf9c31d753130fc33572590efded6b0f3aeb892cca7e83b95
SSDEEP

1536:fMp0dyoY7XLmAxtE3eCHHOv04kUTEnYyhJfV0w2:kp0MP2ALErHHQ6VV0w

Score

N/A

Malware Config

Signatures

Files

31b229833a74865f0c9e5cdb6c40bf4c2cd2aab75b1cc5f146e1c342c5f61213
.exe windows x86

dd3bd8ea0216e75607dd70f4977ad1f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetBinaryTypeW
lstrcmpiA
CreateNamedPipeA
FileTimeToLocalFileTime
HeapCreate
WaitForSingleObject
GetStdHandle
GetModuleFileNameA
lstrcmpiA
GetProcessHeap
IsValidCodePage
SuspendThread
GetDriveTypeW
GetModuleHandleA
lstrcmpiA
Sleep
lstrcmpiA
GetLogicalDriveStringsA
SetLastError
lstrcmpiA
CreateWaitableTimerW
EndUpdateResourceW

printui

PnPInterface
bPrinterSetup
PrinterPropPageProvider
bFolderRefresh

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rts
Size: 1024B - Virtual size: 650B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ