2282ba3374dc46ed52415b0cd1637be1ac9b338f2bf809ac15aa7915238850b9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2282ba3374dc46ed52415b0cd1637be1ac9b338f2bf809ac15aa7915238850b9
Size

301KB
MD5

007ff640e996e2859fdc5942da7490f6
SHA1

cb3dee8ecba9c8ec150c9938125a09cd04a98fb0
SHA256

2282ba3374dc46ed52415b0cd1637be1ac9b338f2bf809ac15aa7915238850b9
SHA512

af69c265ccd98af7f4430baf6dd217ffde65c62033e90ce38091e405acfc628698124954362ccb25b68f1ba7f76097de6b286a0788a0c5570f6b1133f3a4e79d
SSDEEP

6144:ckqXdcbBWpLj0wAl6UHe5b/e5EWl0YOwI72HVZlYicj4zTM3+qZN:chXdcbBuLjZAZHeEEWff7/uj4zTq+2

Score

N/A

Malware Config

Signatures

Files

2282ba3374dc46ed52415b0cd1637be1ac9b338f2bf809ac15aa7915238850b9
.exe windows x86

4d3aea44e475b03f2cb67eb336b44f66

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommState
lstrcmpiW
lstrcmpiW
GetProcessHeap
DeleteFileA
SetLastError
Sleep
lstrcmpiW
HeapCreate
GetConsoleAliasA
GetModuleFileNameA
GetStdHandle
GetVolumePathNameW
lstrcmpiW
FileTimeToLocalFileTime
GetLogicalDriveStringsW
CreateNamedPipeW
IsValidLocale
lstrcmpiW
lstrlenA
GetModuleHandleA
GetStartupInfoA
CreateMailslotW

sqlunirl

AbortSystemShutdown_
wsprintf_
_AppendMenu_@16
_CallMsgFilter_@8

Sections

.text
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 294KB - Virtual size: 293KB

IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ