b336f032e2ea56f4303782e5eebd06e41597ba03dd2abf7e3c7b7303ccfd49da | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b336f032e2ea56f4303782e5eebd06e41597ba03dd2abf7e3c7b7303ccfd49da
Size

302KB
MD5

54b262d211f566d2bbdb6bf51ea8a790
SHA1

d6390a9cfb9c057b689c450583e7d73da5e8bd85
SHA256

b336f032e2ea56f4303782e5eebd06e41597ba03dd2abf7e3c7b7303ccfd49da
SHA512

241070efc671f600d7556703be33a6146f371f9ba55bc6e5970c124c3c80673f65b400ce67aeccff2cf3087921a01bfb4db44bda2c09d737f18ba47fa8f9c6ee
SSDEEP

6144:ZikexJlukszuNID8FumARxNwTFWZQUlTVpixfIDWEGjIul:Fknbum9TFWvVwTLT

Score

N/A

Malware Config

Signatures

Files

b336f032e2ea56f4303782e5eebd06e41597ba03dd2abf7e3c7b7303ccfd49da
.exe windows x86

0ecbc6a3b4f9254111fd6825dd1740be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpW
GetPrivateProfileIntW
lstrcmpiA
GetPrivateProfileIntW
GetPrivateProfileSectionW
CloseHandle
GetDiskFreeSpaceA
CloseHandle
SetFilePointer
HeapCreate
SetEnvironmentVariableW
LoadLibraryExW
WaitForMultipleObjects
GetExitCodeThread
GetDiskFreeSpaceA
OpenMutexA
CloseHandle
CreateEventA
GetModuleHandleA
GetPriorityClass
GetFileAttributesA
CreateDirectoryW
InterlockedExchange

certmgr

DllGetClassObject
DllRegisterServer
DllCanUnloadNow
DllUnregisterServer

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 295KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE