2728390164ca9c40a0f626d6feb135accc7e1b8bef7ddc50ccb1f7800ba64c53 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2728390164ca9c40a0f626d6feb135accc7e1b8bef7ddc50ccb1f7800ba64c53
Size

502KB
MD5

db1673c85a0f33e6a56df6724180ec83
SHA1

80872634981bfc5a1461aedb48017b1346db7b67
SHA256

2728390164ca9c40a0f626d6feb135accc7e1b8bef7ddc50ccb1f7800ba64c53
SHA512

d8bf97a0851677d062f36e1287b84e88e42b3e67b5bb78d4170a696f344aad9dcadc2a36e630132f893b703e13f474fc0397e0b3f652db85fce9c73a77a4b733
SSDEEP

12288:9nbB21uZ3IC09QB00+xr9VYwL7n39PPS/4zZZslm:Zu5QB00+jVYw1U4Dsg

Score

N/A

Malware Config

Signatures

Files

2728390164ca9c40a0f626d6feb135accc7e1b8bef7ddc50ccb1f7800ba64c53
.exe windows x86

8e149b5e1ec423731f3ee64de26aa6c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetProcessHeap
GetModuleHandleA
lstrcmpiW
GetCommState
SetLastError
lstrcmpiW
lstrcmpiW
GetLogicalDriveStringsW
GetVolumePathNameW
GetStdHandle
FileTimeToLocalFileTime
IsValidLocale
GetStartupInfoA
GetModuleFileNameA
DeleteFileA
CreateMailslotW
Sleep
lstrcmpiW
lstrcmpiW
CreateNamedPipeW
HeapCreate
GetConsoleAliasA

scecli

SceOpenPolicy
SceSysPrep
DeltaNotify
InitializeChangeNotify

Sections

.text
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 495KB - Virtual size: 1024KB

IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ