bf2ec2cbd91cbb06fe061bb84d2b0f6563045f1190234f0e23c1e07338c022c3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf2ec2cbd91cbb06fe061bb84d2b0f6563045f1190234f0e23c1e07338c022c3
Size

303KB
MD5

139e331918f110efad33050bbeeef9c0
SHA1

2dd40231b1eb98392b9cba5bc1f3cd48476b41a2
SHA256

bf2ec2cbd91cbb06fe061bb84d2b0f6563045f1190234f0e23c1e07338c022c3
SHA512

03b6bf7b2270d1919dd7b6388c17c5acb4e8bb6c021acb864fcb9a7da9a1dd421b7051297db7bbee6a494a8de1dce37b0f45c6f67e8c6a7f3becb793dd26b088
SSDEEP

6144:7H2xUkjys+IhFwMaUx0DyvCw+YJafl213FppztUQ2Efg2lNitPq3bRPu2Yvuo4Y2:T2iqyRs7Nx0AaflKFppztUQ9Y+itPq3D

Score

N/A

Malware Config

Signatures

Files

bf2ec2cbd91cbb06fe061bb84d2b0f6563045f1190234f0e23c1e07338c022c3
.exe windows x86

f423758ba02136cd16737e7b99461e26

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumePathNameW
GetLocaleInfoA
FileTimeToLocalFileTime
LoadLibraryA
GetMailslotInfo
GetLogicalDriveStringsW
SetLastError
GetProcessHeap
lstrcpyW
GetCommState
lstrcpyW
lstrlenW
lstrcpyW
GetConsoleAliasW
lstrcpyW
GetStdHandle
GetModuleFileNameA
VirtualAllocEx
IsValidLocale
lstrcpyW
CreateEventA
GetStartupInfoA
DeleteFileA

termmgr

DllGetClassObject
DllUnregisterServer
DllCanUnloadNow
DllRegisterServer

Sections

.text
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ORPC
Size: 294KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ADATA
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE