37c9635349bda737aa3c800c185f9b9a9940270863ac9740b1eeaa37e5796963 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37c9635349bda737aa3c800c185f9b9a9940270863ac9740b1eeaa37e5796963
Size

58KB
MD5

6c75903ad6d76d186258a269c1462b3a
SHA1

9f692ed8de1e05d632f9cfd0c1e9e34f77ef38dc
SHA256

37c9635349bda737aa3c800c185f9b9a9940270863ac9740b1eeaa37e5796963
SHA512

f753848924bf4a52b177384fd706055ec4df4ee7a29e90555c585006a3763091f68155d5889da3a47c2741f894fc0f108b08e4f85d5e31d6f0fa7abfba9540a0
SSDEEP

768:ak/EWPM0LEtVbU3mmicAiTeFwWtkIp7fvRJMra90iEIj80DK+HUO68CcddZ39Z5a:aeIxU2m7TevNxpzWL58CcdX5k6/tbZD

Score

N/A

Malware Config

Signatures

Files

37c9635349bda737aa3c800c185f9b9a9940270863ac9740b1eeaa37e5796963
.exe windows x86

777a4f0ee5901b0ad3b3dca29ab95f52

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
Sleep
GetDriveTypeW
GetProcessHeap
lstrcmpiA
DeleteFileA
GetVolumePathNameW
HeapCreate
FileTimeToLocalFileTime
lstrcmpiA
OpenMutexA
GetModuleHandleA
lstrlenA
GetModuleFileNameA
WaitForMultipleObjects
lstrcmpiA
lstrcmpiA
SetLastError
CreateMailslotA
GetLogicalDriveStringsW
CreateNamedPipeW
lstrcmpiA
IsValidLocale

scecli

SceOpenPolicy
InitializeChangeNotify
DeltaNotify
SceSysPrep

Sections

.text
Size: 2KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ