c4be1cd62e9c2cd7e84cd7bb4106f13aec7d9175e9f35a31a542d679c42e0210 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4be1cd62e9c2cd7e84cd7bb4106f13aec7d9175e9f35a31a542d679c42e0210
Size

306KB
MD5

060d0b4b31a86c6cdfeb4d686a4118a0
SHA1

6d6ec5a88066354ee201925cb1e27ec00c7288ab
SHA256

c4be1cd62e9c2cd7e84cd7bb4106f13aec7d9175e9f35a31a542d679c42e0210
SHA512

63cc8948ebd1e83b9940b7bcf3616fbde2a4e39e53bc20980f96485f9a8604ce992524c0e48af25db45d8acb9a44a59f9d707ff116542a94a0287705a5fd0141
SSDEEP

6144:oJqmgPNrK8PjzgwuftDvShM7gEZRNtZm634e2jI3Ik9X4X8zaFbMAcnai9Wm:oJqmgd7PYlDSh0ZRNtZm63L2cYkF4XvO

Score

N/A

Malware Config

Signatures

Files

c4be1cd62e9c2cd7e84cd7bb4106f13aec7d9175e9f35a31a542d679c42e0210
.exe windows x86

4a1b630d3d03f6cd93bec0439190bde9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstVolumeA
lstrcmpW
GetEnvironmentVariableW
CloseHandle
ReadConsoleA
GetDiskFreeSpaceW
OpenMutexW
CreateSemaphoreA
HeapCreate
WaitForMultipleObjects
GetFileAttributesW
GetStringTypeA
GetVolumePathNameA
GetConsoleMode
CloseHandle
CloseHandle
GetCurrentDirectoryA
GetModuleHandleW
FindNextVolumeA
GetFullPathNameA
ReleaseSemaphore
GetModuleHandleA
GetFullPathNameA

certmgr

DllRegisterServer
DllGetClassObject
DllCanUnloadNow
DllUnregisterServer

Sections

.text
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.pack
Size: 297KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE