00fd5f842cfff30302335519892d325f14f6b4d4c7f20fb5162a068f78ea64e0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00fd5f842cfff30302335519892d325f14f6b4d4c7f20fb5162a068f78ea64e0
Size

58KB
MD5

db65352b22e315136e5ffcd920a22bf9
SHA1

eae4b3c6debed1e2759bf9f434215ab1e3138902
SHA256

00fd5f842cfff30302335519892d325f14f6b4d4c7f20fb5162a068f78ea64e0
SHA512

0f6cc908f56060973c01fb5fe4aa0c2d4ffc6ce65120401e3d11599009d3b44af7a30665babb6e6f72032af699bf8fd56aaf49b025912eede82f3eaef83ad531
SSDEEP

1536:CJoCcXcM/zmzyOnnrX6gy7UkOW56hVz/0at7R0w2:CJoCAcM/MyOnrXQYkdGVz/v7R0w

Score

N/A

Malware Config

Signatures

Files

00fd5f842cfff30302335519892d325f14f6b4d4c7f20fb5162a068f78ea64e0
.exe windows x86

59aa7fcc4aa9c18e9e9a8c1d51e25fdb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
EndUpdateResourceW
SuspendThread
lstrcmpiA
lstrcmpiA
GetDriveTypeW
lstrcmpiA
HeapCreate
lstrcmpiA
GetBinaryTypeW
WaitForSingleObject
FileTimeToLocalFileTime
CreateWaitableTimerW
Sleep
GetLogicalDriveStringsA
CreateNamedPipeA
GetStdHandle
lstrcmpiA
SetLastError
GetModuleFileNameA
IsValidCodePage
lstrlenA
GetModuleHandleA

printui

bFolderRefresh
bPrinterSetup
PnPInterface
PrinterPropPageProvider

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rts
Size: 1024B - Virtual size: 650B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ