869d08a6bfbd84c5751a97e2f66c9bc2ccfee6fb6ac06e93c54d100f3850d38c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

869d08a6bfbd84c5751a97e2f66c9bc2ccfee6fb6ac06e93c54d100f3850d38c
Size

66KB
MD5

9b3b258ba3192ac7f008c0ee2606b8ad
SHA1

3b403de26e67444a00584fd89af47b7ab8703dcd
SHA256

869d08a6bfbd84c5751a97e2f66c9bc2ccfee6fb6ac06e93c54d100f3850d38c
SHA512

a0bd6a48af6703ff95af14f869544d60e714c03f8ef1510ccc8a50d105b0010b4be361b97622abe6d2efeba534dff7d64bff2c7fce2ac872888b071c64ba15cf
SSDEEP

1536:Df1kjzLwcKxqOjhG0bkH9sISmcav7dYL65hiF2:b1EfooOjXkHGISVadYW5hI2

Score

N/A

Malware Config

Signatures

Files

869d08a6bfbd84c5751a97e2f66c9bc2ccfee6fb6ac06e93c54d100f3850d38c
.exe windows x86

a90c013b5af6810f756965b70748a97d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
GetDiskFreeSpaceA
FindCloseChangeNotification
WriteFileEx
FindVolumeClose
SetVolumeLabelW
FindActCtxSectionStringA
GlobalFix
GetThreadSelectorEntry
GetLocaleInfoA
CopyFileExA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE