fed8d3116c4197ad1199b4ea66c1a2ebc1991887ac91024602ccd636be6e9829 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fed8d3116c4197ad1199b4ea66c1a2ebc1991887ac91024602ccd636be6e9829
Size

116KB
MD5

e4b59e8e79eebf6992e429d44dceabcb
SHA1

39c768c79c66325d6fb0e4a1490b0bdc6c5c0aa1
SHA256

fed8d3116c4197ad1199b4ea66c1a2ebc1991887ac91024602ccd636be6e9829
SHA512

a239d81bee81c93e5371b3656fcee1c874b00821f3e1e8e0a20f9163a09cddb8811a95544217b0d67c3a33bc0422e57a4c475821dd3c8673d714bbba494ac941
SSDEEP

1536:FdrhyRzClGMGsH8TPCbA3kylfDXXDgDCu/Hy60Bgh5ng29qRkWycIW62/3:rN6Cld+fDHMd6gh5nyVcW6

Score

N/A

Malware Config

Signatures

Files

fed8d3116c4197ad1199b4ea66c1a2ebc1991887ac91024602ccd636be6e9829
.exe windows x86

890b112de1b48d5ffd971bfc9e5d6a29

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileIntW
HeapCreate
SetEnvironmentVariableW
CreateEventA
SetFilePointer
GetExitCodeProcess
lstrcmpA
GetPrivateProfileSectionW
WaitForMultipleObjects
CloseHandle
OpenMutexA
CreateDirectoryW
GetFileAttributesA
GetDiskFreeSpaceA
lstrcmpiA
GetPriorityClass
GetDiskFreeSpaceA
GetModuleHandleA
LoadLibraryExW
CloseHandle
InterlockedExchange
CloseHandle
GetPrivateProfileIntW

certcli

CADeleteCertType
CAEnumCertTypes
CAEnumFirstCA
CADeleteCA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE