fa2f1753e098752f7730cd186461dc233a2faac4e9c0de8b976bc73ce12a1289 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa2f1753e098752f7730cd186461dc233a2faac4e9c0de8b976bc73ce12a1289
Size

64KB
MD5

75a161312037859884d8a0e7bcb70710
SHA1

3ec93f63ac933ff0b3e9cb9bada00029199790d8
SHA256

fa2f1753e098752f7730cd186461dc233a2faac4e9c0de8b976bc73ce12a1289
SHA512

a1d9f7ab1761726d9969e98f1227daf391477c2e3a4adb60cd7394deb3ab729b5b5481052eaf99b52dc852f1e51b87aa840e1117376ba293b8f4e0af4b539253
SSDEEP

1536:TH2H1kotl98Wdb/FDrZ2weUgHQsvUs5UwcZZX:TH2Heotv8WhFDUSOSsi

Score

N/A

Malware Config

Signatures

Files

fa2f1753e098752f7730cd186461dc233a2faac4e9c0de8b976bc73ce12a1289
.exe windows x86

f52a0a0f0fd0fbb60f11d22170f108e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForMultipleObjects
lstrcmpiA
HeapCreate
GetVolumePathNameW
lstrcmpiA
GetProcessHeap
DeleteFileA
OpenMutexA
SetLastError
GetLogicalDriveStringsW
GetDriveTypeW
IsValidLocale
GetModuleHandleA
Sleep
lstrlenA
GetStdHandle
CreateMailslotA
CreateNamedPipeW
lstrcmpiA
lstrcmpiA
GetModuleFileNameA
FileTimeToLocalFileTime
lstrcmpiA

scecli

SceSysPrep
SceOpenPolicy
InitializeChangeNotify
DeltaNotify

Sections

.text
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ