94c9359ac40033dd81622864b0f4f0b1ef137235354222c5a2bf1c44ff6e7dd2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

94c9359ac40033dd81622864b0f4f0b1ef137235354222c5a2bf1c44ff6e7dd2
Size

76KB
MD5

72c9d01c9a67c27dd854fd4720229bbd
SHA1

c552662d19ebd66739c6ad49dbbdc671c17ad907
SHA256

94c9359ac40033dd81622864b0f4f0b1ef137235354222c5a2bf1c44ff6e7dd2
SHA512

e3d306af872e93814c1c3e707ca5cba2d51d5b423a0bde372f14558c1658d54d78d014392159ad39b240cd26a13e3c7d55ee2f589fd5fbef9f51d8914b333e88
SSDEEP

1536:HJfBfBfBfBPSdXkDTehZNn7lTLEDrsuKqTUnXM53JcpjVrs2ryrd1vUQuq6:H9111NElVlTLEq5XGWHs2qo

Score

N/A

Malware Config

Signatures

Files

94c9359ac40033dd81622864b0f4f0b1ef137235354222c5a2bf1c44ff6e7dd2
.exe windows x86

a79fd39b3d8d40422cbac08b61ba58d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteVolumeMountPointW
FreeEnvironmentStringsA
WriteFileEx
SetStdHandle
GetVolumeNameForVolumeMountPointA
LCMapStringW
OpenProfileUserMapping
GetPrivateProfileStructW
CallNamedPipeW
EnumSystemGeoID

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE