bcee81ded4a23759f3165e82c9a872b2af0d8a6acb156d8d37e85e20f5b01143 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bcee81ded4a23759f3165e82c9a872b2af0d8a6acb156d8d37e85e20f5b01143
Size

122KB
MD5

205ae3a4beb8fcfb0626879119180650
SHA1

b082556609478e188f89e0112e61776f0d94da0e
SHA256

bcee81ded4a23759f3165e82c9a872b2af0d8a6acb156d8d37e85e20f5b01143
SHA512

dac64d8f7dd0e1a3ad06e5e4ef63928fa2f8055d69038e6e9d294599112ee159f94f54c78f844dd9a1bfdd9a084e4d0c5be22b86daca62cc8ca8f7916bfaf1d0
SSDEEP

3072:spLBnww7d/b+gnItY/j13Dq/JVqQAi7A9:wBwKPItEjFcJV2i+

Score

N/A

Malware Config

Signatures

Files

bcee81ded4a23759f3165e82c9a872b2af0d8a6acb156d8d37e85e20f5b01143
.exe windows x86

1a2a1a2c7ad4914d34abe246972b7c2f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
GetCurrentDirectoryA
GetEnvironmentVariableW
GetModuleHandleW
lstrcmpW
GetVolumePathNameA
FindFirstVolumeA
GetModuleHandleA
HeapCreate
GetFullPathNameA
GetFileAttributesW
ReadConsoleA
CreateSemaphoreA
GetStringTypeA
CloseHandle
CloseHandle
GetDiskFreeSpaceW
OpenMutexW
ReleaseSemaphore
GetFullPathNameA
FindNextVolumeA
WaitForMultipleObjects
CloseHandle

certmgr

DllUnregisterServer
DllGetClassObject
DllCanUnloadNow
DllRegisterServer

Sections

.text
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.res
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE