ad927dd1c335bef1bf9955c484781707596ad648f2be5ad1768559ba1ecab073 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ad927dd1c335bef1bf9955c484781707596ad648f2be5ad1768559ba1ecab073
Size

55KB
MD5

3d9da13c2a66b226518761aa3c335d50
SHA1

b9cb5cacee38a5a4ae851e285a78433da2cd8cc4
SHA256

ad927dd1c335bef1bf9955c484781707596ad648f2be5ad1768559ba1ecab073
SHA512

ffa10384ea76a71e5016c3001c99e6f6a61f0c1e66eced28d00e05381fe27dda2697adf8d74088c561fa573aeccd98ec72bd23c4988807699406c483d2ee3cdb
SSDEEP

768:71vTOU3sG4gMDLB0mEua29zGYi/tj0xlWLcdf+d8+kp71Qz6kBZjt2SYeiNv8fED:hp8G4Ll/zZkahp+PkpREBNESedrmL

Score

N/A

Malware Config

Signatures

Files

ad927dd1c335bef1bf9955c484781707596ad648f2be5ad1768559ba1ecab073
.exe windows x86

58ea99b82c8334c05441522507960c74

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GetProcessHeap
lstrcmpiW
lstrcmpiW
GetCommState
GetModuleFileNameA
FileTimeToLocalFileTime
GetStdHandle
lstrcmpiW
DeleteFileA
GetConsoleAliasA
lstrcmpiW
HeapCreate
GetVolumePathNameW
GetLogicalDriveStringsW
Sleep
GetStartupInfoA
lstrlenA
CreateNamedPipeW
GetModuleHandleA
IsValidLocale
lstrcmpiW
CreateMailslotW

sqlunirl

_AppendMenu_@16
wsprintf_
AbortSystemShutdown_
_CallMsgFilter_@8

Sections

.text
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ