c4266d511561f441fc5e3aa7535c8554c7a6ef30ac1292e98493d8318185ccb0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4266d511561f441fc5e3aa7535c8554c7a6ef30ac1292e98493d8318185ccb0
Size

341KB
MD5

0fca4a0db5f8f7e01c0ac8d2c7a826f2
SHA1

e956176112cbfba958b728a7036a81e512859bfa
SHA256

c4266d511561f441fc5e3aa7535c8554c7a6ef30ac1292e98493d8318185ccb0
SHA512

3345e0379c2711ab6c852a2a9b5b4d2bdf3077e8cbf5d84be38bf76d6f01fe0478d9951bfe1d1b292e6f60e9e82203e2caf63a642a59ef33efac7d56c036b7ae
SSDEEP

3072:BmocIZNaf4m+BiuB6o+OysucnR6xx36iuWWnxENVaUpBPLolebVjD555fmY:Ieg4tnaOhljiNC4/XDoEJ5

Score

N/A

Malware Config

Signatures

Files

c4266d511561f441fc5e3aa7535c8554c7a6ef30ac1292e98493d8318185ccb0
.exe windows x86

95576cad76b27fed71f651facf9f4342

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
VirtualAlloc
GetProcAddress
LoadLibraryA
GetLastError
CreateThread
ExitThread
SetFilePointer
SetStdHandle
GlobalAlloc
RtlUnwind
HeapDestroy
DeviceIoControl
CreateFileA
CloseHandle
WideCharToMultiByte
GlobalReAlloc
GlobalFree
GetModuleHandleA
WriteFile
HeapCreate
FlushFileBuffers
VirtualProtect
Sleep
GetTickCount

cfgmgr32

CM_Get_Parent
CM_Get_Sibling
CM_Get_Child
CM_Get_DevNode_Registry_PropertyA
CM_Locate_DevNodeA

Sections

.text
Size: 323KB - Virtual size: 1020KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ