be1bdbe8dcea46d5cebefb47261a17988a29fc3edc758c53b8acab43cb0c76c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

be1bdbe8dcea46d5cebefb47261a17988a29fc3edc758c53b8acab43cb0c76c2
Size

66KB
MD5

9d92af13715744b87e3aaeda5ae315bc
SHA1

b1024a42ad140b66411301cd9e0fbe8b383d95c8
SHA256

be1bdbe8dcea46d5cebefb47261a17988a29fc3edc758c53b8acab43cb0c76c2
SHA512

e9006168306c0d103568202c93fa2c188c05fc4a352605d49e3e39d8c246f6a342a9cd58dcba42fdfca3d2a2a06c74be8a7f74de5e1b66765a1b43802f5bcfa5
SSDEEP

1536:aC3hJ3QZI3FHEbzKoAErnPkhE+c/Mgv+B17/LPK6:aCTAZI3ayTErPuRc/F2/7/G

Score

N/A

Malware Config

Signatures

Files

be1bdbe8dcea46d5cebefb47261a17988a29fc3edc758c53b8acab43cb0c76c2
.exe windows x86

333101c1b69bb24e484583f696b06099

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CheckNameLegalDOS8Dot3A
RegisterWaitForSingleObject
CreateProcessW
ResumeThread
FindFirstVolumeMountPointW
SetDefaultCommConfigA
SignalObjectAndWait
UTUnRegister
WritePrivateProfileStructW
TransactNamedPipe

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE