132a5acf8e253f4c981863a0ec4c9b3f953cefb130cb64074ed79c2a46a7026e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

132a5acf8e253f4c981863a0ec4c9b3f953cefb130cb64074ed79c2a46a7026e
Size

58KB
MD5

b3f1a42d64ad989399591a5ab9c39332
SHA1

3c690ba6a8d6c4673e0f6624207e10b86123a047
SHA256

132a5acf8e253f4c981863a0ec4c9b3f953cefb130cb64074ed79c2a46a7026e
SHA512

4ab2449fd2b4b0cd668ebecd4974f6da1f73caae9e86b9a6315d1941b0e72c83cd5a7cec0b84dae512e485815e3c573ba7e3d2417a664e4fc151284a8e7b57f9
SSDEEP

1536:k8/pBCXd7CK8OsoOLLsXh5eRxwPf4s7Rj9suTts2ZD:k8/3CXFFvKIXh5Oq34s7Rt

Score

N/A

Malware Config

Signatures

Files

132a5acf8e253f4c981863a0ec4c9b3f953cefb130cb64074ed79c2a46a7026e
.exe windows x86

c9cb711dd5492d42e95407e4b9892b32

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
GetModuleHandleA
GetStdHandle
lstrcmpiA
GetLogicalDriveStringsW
GetDriveTypeW
lstrcmpiA
GetProcessHeap
lstrcmpiA
Sleep
IsValidLocale
SetLastError
lstrlenA
HeapCreate
lstrcmpiA
DeleteFileA
CreateNamedPipeW
lstrcmpiA
WaitForMultipleObjects
CreateMailslotA
OpenMutexA
GetModuleFileNameA
GetVolumePathNameW

scecli

InitializeChangeNotify
SceOpenPolicy
DeltaNotify
SceSysPrep

Sections

.text
Size: 2KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ