a89d57f03e8599b2c861834be343adc923ab243b8b3260212dbe24413393941d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a89d57f03e8599b2c861834be343adc923ab243b8b3260212dbe24413393941d
Size

76KB
MD5

762f6bbeced98f9f90e28699927f80e2
SHA1

9f2edef85320d6edf3a8ad47cd7146525a0e662a
SHA256

a89d57f03e8599b2c861834be343adc923ab243b8b3260212dbe24413393941d
SHA512

51b6955ea56a72257b7803c3ec2f939b9b70f5b01e63b87e12194bc7896bd3569843b7c6432c4bcbde91668f4841dc3442261f39a7df175b323a22583ed3dec4
SSDEEP

1536:0IUlRUlRUlRUlRUlRkmgmljJcJfbN4R+bAMSOgob8E5DVUhPX+fAaR8J3YpjVrso:7VEjJcJOEpgE5DihW4X6Hs2qo

Score

N/A

Malware Config

Signatures

Files

a89d57f03e8599b2c861834be343adc923ab243b8b3260212dbe24413393941d
.exe windows x86

4e2c7a7ed3c33bcf2818f569e818ef6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileIntA
GetCurrentThread
ExpungeConsoleCommandHistoryW
WaitForSingleObject
FindVolumeClose
SetCurrentDirectoryA
CompareStringA
WriteProfileStringW
VDMOperationStarted
GetFirmwareEnvironmentVariableA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE