daf3626b6b0d2aec9b07b5a807328a745da5d47ae71760faf1a3efef1bc10bed | Triage

Sharing

Copy URL Twitter E-mail

General

Target

daf3626b6b0d2aec9b07b5a807328a745da5d47ae71760faf1a3efef1bc10bed
Size

299KB
MD5

d759c619071563f4f5c5ef6b3a807aac
SHA1

640d84c01888dadafcbf1d6395f4044b353a8932
SHA256

daf3626b6b0d2aec9b07b5a807328a745da5d47ae71760faf1a3efef1bc10bed
SHA512

966e5ddbd1a1f7b9dd082b4bf09b94fd499a1a1fcbafa00535f45545680cea9b64d6adfb81cb9186cc2074338685f2924080d23728e0a64a36882dffa486727c
SSDEEP

6144:EfchuRZSbHByAyhUT+MCgpHhMINKZpLFR35MBoz1En7GJlUunq1O3RANcAe7NKV:EnUbgVHMRUZxIC+inn13icAeZ

Score

N/A

Malware Config

Signatures

Files

daf3626b6b0d2aec9b07b5a807328a745da5d47ae71760faf1a3efef1bc10bed
.exe windows x86

f8ba8207f762f3ce681a446add96c892

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
lstrcmpiA
WaitForMultipleObjects
FileTimeToLocalFileTime
CreateNamedPipeA
GetLogicalDriveStringsA
DeleteFileA
CreateMailslotA
HeapCreate
lstrcmpiA
lstrcmpiA
GetModuleHandleA
Sleep
lstrlenA
SetLastError
IsValidLocale
GetProcessHeap
lstrcmpiA
OpenMutexA
GetDriveTypeW
lstrcmpiA
GetModuleFileNameA
GetVolumePathNameA

scecli

SceOpenPolicy
InitializeChangeNotify
DeltaNotify
SceSysPrep

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 291KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ