ffbd76ddf161ec0fb62295c93b929aa7358d8aa012082dc13c43f0e3980f27ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ffbd76ddf161ec0fb62295c93b929aa7358d8aa012082dc13c43f0e3980f27ae
Size

185KB
MD5

8015b1623c04693c29d9c1c95e13ca8d
SHA1

26b2c839772359b9dc2c4234d1c3a6264f08550a
SHA256

ffbd76ddf161ec0fb62295c93b929aa7358d8aa012082dc13c43f0e3980f27ae
SHA512

e371175da30855c84e4e84fead63ce4d8bc60393f37f58086780b4573299dcd2934ca738b58a4dee7d33e41e5705c90c412fc344c2fe8097e8341f1e0b4d6dbb
SSDEEP

3072:Mm6dMU1mCE1XHZO2wMnN1f9DjUW+b0kteBwt743rQAZRXs3le8r:MRWbwMnNxZH+9eBX7QAZR8k8r

Score

N/A

Malware Config

Signatures

Files

ffbd76ddf161ec0fb62295c93b929aa7358d8aa012082dc13c43f0e3980f27ae
.exe windows x86

6aaef1b4b7d4104e2d236803c2b9e9c2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Child
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

kernel32

GetACP
ReadFile
SetFileTime
GetModuleHandleW
AddAtomA
UnlockFile
FindClose
GlobalUnlock
FindFirstFileW
GetFileTime
DeleteFileW
GetVersion
SetFileAttributesW
lstrlenW
GetProcAddress
CloseHandle
SetLastError
GetModuleHandleA
GetVolumeInformationW
MoveFileW
GlobalFree
SetFilePointer
GetDriveTypeW
GlobalAlloc
EnumResourceNamesW
GetFileSize
IsDBCSLeadByteEx
LoadLibraryW
SearchPathW
GetCurrentDirectoryW
CheckNameLegalDOS8Dot3W
GlobalSize
WriteFile
GetFileAttributesW
GetModuleFileNameW
IsDBCSLeadByte
LockFile
GlobalReAlloc
GetSystemDefaultLCID
GetVersionExW
FindNextFileW
OutputDebugStringA
WinExec
GetLastError

Sections

.text
Size: 95KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ