5be2f736dad99c4590722b018f3da4c53fec3108354856717349678535ea2b45 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5be2f736dad99c4590722b018f3da4c53fec3108354856717349678535ea2b45
Size

302KB
MD5

589bdf6d67d9ddcef93b29547769fa8b
SHA1

bbdb70369a82dabd5830c717ca3ff57a58a0ddd8
SHA256

5be2f736dad99c4590722b018f3da4c53fec3108354856717349678535ea2b45
SHA512

99984ce4533a94b7aa4391e10e2652fc1fdccd272df328874bbbeed41c825281e15e8d5bbbd18f10fc3e0af194a6aca53d412173dc11bcd687e0f5465a29e95d
SSDEEP

6144:On9BK5a439kFvzzgG13C4fmRUa47xT27Bowh4UTGqP1E8KBo4W:IjK5a439chx1mRUaG927BowhtGAE8KBg

Score

N/A

Malware Config

Signatures

Files

5be2f736dad99c4590722b018f3da4c53fec3108354856717349678535ea2b45
.exe windows x86

c35ae1a39cfbd6197410c021e7bd4290

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenMutexW
WaitForMultipleObjects
GetModuleHandleA
VirtualFree
GetDiskFreeSpaceW
GetEnvironmentVariableW
FindNextVolumeA
ReleaseSemaphore
GetModuleHandleW
GetConsoleMode
CloseHandle
GetCurrentDirectoryA
FindFirstVolumeA
HeapCreate
GetStringTypeA
GetVolumePathNameW
Sleep
GetFullPathNameW
CloseHandle
GetFullPathNameW
CloseHandle
CreateSemaphoreA
ReadConsoleA

dbghelp

ImageRvaToVa
ImageRvaToSection
ImageNtHeader
FindFileInPath

Sections

.text
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.res
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE