06c7716eb4fef63a0b182eadccfe29f2c13b5b78dc97977a45b3ad7ef6863a23 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06c7716eb4fef63a0b182eadccfe29f2c13b5b78dc97977a45b3ad7ef6863a23
Size

299KB
MD5

f80bc80ad2f7ce2742998bb2d67adce8
SHA1

8e4c717ba538bf0ca931f9729e4f8638d5507ba8
SHA256

06c7716eb4fef63a0b182eadccfe29f2c13b5b78dc97977a45b3ad7ef6863a23
SHA512

da58a58993bcd64612e2a98bca6bc1b995fa3c798c959cfb478400c20c5b2871719dcdab3f0a1a3ff4613c755887cd639f0ac80464d9d8fbab7fb5423bcb5473
SSDEEP

6144:HluRhYSq+QAMDhCQUpMkOdZZ98Q+n7sUJazf2w3L9vrtAzGI:ihYvAmh4z+Cn1JaLDVrtG

Score

N/A

Malware Config

Signatures

Files

06c7716eb4fef63a0b182eadccfe29f2c13b5b78dc97977a45b3ad7ef6863a23
.exe windows x86

220bdb3447e40605ff8293122a79ed71

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateNamedPipeW
lstrcmpiA
GetLogicalDriveStringsW
lstrcmpiA
DeleteFileA
GetProcessHeap
WaitForMultipleObjects
lstrcmpiA
FileTimeToLocalFileTime
lstrcmpiA
GetStdHandle
IsValidLocale
Sleep
HeapCreate
OpenMutexA
GetModuleHandleA
GetModuleFileNameA
CreateMailslotA
lstrlenA
GetDriveTypeW
SetLastError
GetVolumePathNameW
lstrcmpiA

scecli

SceOpenPolicy
InitializeChangeNotify
DeltaNotify
SceSysPrep

Sections

.text
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 291KB - Virtual size: 290KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ