06068fd67a1146c631c8d95c10738562d31c0ba781e4433cf0e3ca1e67b5fe59 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06068fd67a1146c631c8d95c10738562d31c0ba781e4433cf0e3ca1e67b5fe59
Size

63KB
MD5

cb0201fa6745e977f2eac3b81f9ea4af
SHA1

93364665743728e28a7d1febd933ef96b0297333
SHA256

06068fd67a1146c631c8d95c10738562d31c0ba781e4433cf0e3ca1e67b5fe59
SHA512

0253623fd659e5a389fb109576b069084285de1b9312663cd3ca2ed78792e30f0a2d00595a6764be36c6d89dcd345185d6c4fdf602c89d8af1d04fea73d9c1cf
SSDEEP

1536:Opb0EQS6LTCsIHEq6GGWxDIlziItzq8ARbsO/Umk8:OpItL2s8ZGQDgmgzJqbsO8l

Score

N/A

Malware Config

Signatures

Files

06068fd67a1146c631c8d95c10738562d31c0ba781e4433cf0e3ca1e67b5fe59
.exe windows x86

9b2edd43ae3ec3c719606944d0208757

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
lstrcmpiW
lstrlenA
GetLogicalDriveStringsW
CreateMailslotW
GetStartupInfoA
FileTimeToLocalFileTime
GetModuleHandleA
HeapCreate
SetLastError
Sleep
lstrcmpiW
lstrcmpiW
GetVolumePathNameW
GetStdHandle
CreateNamedPipeW
lstrcmpiW
lstrcmpiW
GetCommState
DeleteFileA
IsValidLocale
GetProcessHeap
GetConsoleAliasW

sqlunirl

wsprintf_
_CallMsgFilter_@8
AbortSystemShutdown_
_AppendMenu_@16

Sections

.text
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ