9d52bcc79e4334df505411fc674db8de2b91956b92029c534040b558d37dc85a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9d52bcc79e4334df505411fc674db8de2b91956b92029c534040b558d37dc85a
Size

126KB
MD5

0882b326070f2c64af179d35c0a8b180
SHA1

c2249c0175f23ceee16b9d2adf591fc2eb2bd2f0
SHA256

9d52bcc79e4334df505411fc674db8de2b91956b92029c534040b558d37dc85a
SHA512

1e065d638812475b4233d823d5c30d2d1bdd7e6de3b048b0f68188683d97659974f891f567b05eacaaa71d0742450f87081003c2ea838f64918a88b3a02cd74a
SSDEEP

3072:UX5hxgFlYPr4RmyjgtLb+USQh1xbNU0pPV/t:UpgFlYPrZyjgFKMh1xb7Ntt

Score

N/A

Malware Config

Signatures

Files

9d52bcc79e4334df505411fc674db8de2b91956b92029c534040b558d37dc85a
.exe windows x86

bbbaf312ade536a01d78d7ba3e49e313

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReleaseSemaphore
CloseHandle
GetVolumePathNameA
GetPrivateProfileSectionW
GetFullPathNameA
GetEnvironmentVariableA
GetModuleHandleA
CloseHandle
OpenMutexA
GetFileAttributesW
lstrcmpW
GetDiskFreeSpaceW
HeapCreate
CloseHandle
GetModuleHandleW
CreateEventW
GetPrivateProfileIntW
lstrcmpiW
GetFullPathNameA
WaitForMultipleObjects
GetPrivateProfileIntW
GetExitCodeThread
CreateDirectoryW

certmgr

DllUnregisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ