e693bfec3e893b324dab07009d711b8c08e849a77332d26e3cccd6c215b1ae4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e693bfec3e893b324dab07009d711b8c08e849a77332d26e3cccd6c215b1ae4b
Size

62KB
MD5

9e7e081f06e649392ad103d208cd3f33
SHA1

902cd7d4d4216f4a1de6b45fde63573601645119
SHA256

e693bfec3e893b324dab07009d711b8c08e849a77332d26e3cccd6c215b1ae4b
SHA512

192b1771970d8f970ab7a6b2292b4445cb3f7e14ea7cd992b383d4d28cec41589cd30d59dbc0227904cb956198341517c5291afe9a85df4d6074fad542053c22
SSDEEP

768:SqSNUoz0wCDf56NAzNIoaOsmzaSayZmdJcLP7h0BzHHt9dNYDoS0oCpAi/oaT0A:Gg7DuQ5Nzam/hgN9dN4x0zz7f

Score

N/A

Malware Config

Signatures

Files

e693bfec3e893b324dab07009d711b8c08e849a77332d26e3cccd6c215b1ae4b
.exe windows x86

0f8830d469ea8c4fc75399b433383542

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeThread
GetPrivateProfileIntW
GetDiskFreeSpaceA
CloseHandle
WaitForMultipleObjects
GetPrivateProfileSectionW
lstrcmpW
OpenMutexA
InterlockedExchange
GetModuleHandleA
CloseHandle
HeapCreate
CloseHandle
GetPrivateProfileIntW
GetDiskFreeSpaceA
LoadLibraryExW
SetEnvironmentVariableW
lstrcmpiA
GetPriorityClass
GetFileAttributesA
SetFilePointer
CreateDirectoryW
CreateEventA

certmgr

DllUnregisterServer
DllCanUnloadNow
DllGetClassObject
DllRegisterServer

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE