39befbe1e44d85139084be11b7986a18ff42d5e864c3965eb0af21850009809f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39befbe1e44d85139084be11b7986a18ff42d5e864c3965eb0af21850009809f
Size

53KB
MD5

9f82d8af738630cb2a423bc56168dcb2
SHA1

11b13e246e9297c431b39b2158d9f6aa2841946a
SHA256

39befbe1e44d85139084be11b7986a18ff42d5e864c3965eb0af21850009809f
SHA512

a7cdaebe9561755c26442435f082ccd84a44706cbb453c961fd8315cc11241818d4143b62300d6b75d851cd476c951599e2e69f7ab2b63bb8892a1b40ac9e5e0
SSDEEP

1536:VrjiH2GBvK1xnooYu7B6YqKEvTor3Ymdmj:VreHtgYMqKkToTPd

Score

N/A

Malware Config

Signatures

Files

39befbe1e44d85139084be11b7986a18ff42d5e864c3965eb0af21850009809f
.exe windows x86

76fe43690888affc3f530d14f3982e8d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiW
HeapCreate
GetModuleHandleA
CreateNamedPipeW
GetModuleFileNameA
GetProcessHeap
lstrcmpiW
Sleep
SetLastError
GetCommState
lstrlenA
GetVolumePathNameW
GetLogicalDriveStringsW
DeleteFileA
FileTimeToLocalFileTime
GetStdHandle
lstrcmpiW
GetStartupInfoA
IsValidLocale
GetConsoleAliasW
CreateMailslotW
lstrcmpiW
lstrcmpiW

sqlunirl

_CallMsgFilter_@8
wsprintf_
AbortSystemShutdown_
_AppendMenu_@16

Sections

.text
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.RDATA
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ORPC
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.PDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ