c60a3941f83dd0ae4101e253e6df3bf1e12eeca23b862c0ca3c7ebf91221b961 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c60a3941f83dd0ae4101e253e6df3bf1e12eeca23b862c0ca3c7ebf91221b961
Size

310KB
MD5

3b2d81031facfe3fcb9e21482629f940
SHA1

08af83ac3147586722f59e35f5f7ee4a5900bf8e
SHA256

c60a3941f83dd0ae4101e253e6df3bf1e12eeca23b862c0ca3c7ebf91221b961
SHA512

5ebfdbdf4172a77dc36aa2c6528fe4a08dd2aa427625fe0ac56c4ca26cc21a8f9bcdeba2f7bb543ead783ad753cb50164e1d2ae1e5a3054b57dfcce4053fb245
SSDEEP

6144:UStQh6YpESyttGOkOaQE4XVTxmXM2w+benp05oLVZLMBNmWX:J35SyXGRtQVXxxKM2q05ixMnX

Score

N/A

Malware Config

Signatures

Files

c60a3941f83dd0ae4101e253e6df3bf1e12eeca23b862c0ca3c7ebf91221b961
.exe windows x86

8d8c75b397f55aa88c1095e76c720362

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
InterlockedDecrement
GetPrivateProfileSectionA
GetPrivateProfileIntA
InterlockedIncrement
SetEnvironmentVariableA
GetExitCodeProcess
GetDiskFreeSpaceW
WaitForSingleObject
GetLongPathNameA
FindResourceW
ExitProcess
Sleep
LoadLibraryA
lstrcpyW
WriteFileEx
GetPrivateProfileIntA
GetFileAttributesA
Sleep
GetDiskFreeSpaceW
VirtualAllocEx
Sleep
lstrcmpA

apphelp

ApphelpCheckIME
SdbCreateMsiTransformFile
AllowPermLayer
ApphelpCheckExe

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rss
Size: 304KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ