16e73891fcaadfe417459c446c9fd01afdb5c35944e0c325c8e4fdbdd9d3664f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16e73891fcaadfe417459c446c9fd01afdb5c35944e0c325c8e4fdbdd9d3664f
Size

304KB
MD5

c92df4c30acf96837bb34bce2b1c1efb
SHA1

e2c07de03cb862e54f39414be717e5efa092cd3e
SHA256

16e73891fcaadfe417459c446c9fd01afdb5c35944e0c325c8e4fdbdd9d3664f
SHA512

1fb86a67a8ccf44c62481a251761a92a4b75ca5e5f20f1d4a5f620986365209102b22c4042f1ae6b9ed8190cb2e14850a3445bb78dc078dcb83f139322f379b1
SSDEEP

6144:Y8qtgDU0jIWJrue2/+HHZ5oUatbfFu6xC7Y9o0Xw9SLtvYhjqT7w:5qtgDU0se2Gn4TdxCl0wSRgdV

Score

N/A

Malware Config

Signatures

Files

16e73891fcaadfe417459c446c9fd01afdb5c35944e0c325c8e4fdbdd9d3664f
.exe windows x86

aa235764e29eb761cee23d5ac9cab73e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
GetFileAttributesA
lstrcmpA
GetPrivateProfileSectionA
Sleep
GetPrivateProfileIntA
InterlockedDecrement
InterlockedIncrement
SetEnvironmentVariableA
GetLongPathNameW
LoadLibraryA
FindResourceW
GetPrivateProfileIntA
CreateDirectoryA
Sleep
Sleep
GetExitCodeProcess
WaitForSingleObject
lstrcpyW
WriteFileEx
GetDiskFreeSpaceW
LoadLibraryExA
GetDiskFreeSpaceW

azroles

AzAddPropertyItem
AzApplicationDelete
AzApplicationCreate
AzApplicationClose

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 298KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ