96e6e2a3922a6cef7e91bafc2811ffc43f8e2281d9a8f2cdc04aa2754aa914fe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96e6e2a3922a6cef7e91bafc2811ffc43f8e2281d9a8f2cdc04aa2754aa914fe
Size

117KB
MD5

016ec2ed35e0bae24ebe74c9bf9b43f0
SHA1

5f064ac06bcacfc5ecfd189733b8320279fc933c
SHA256

96e6e2a3922a6cef7e91bafc2811ffc43f8e2281d9a8f2cdc04aa2754aa914fe
SHA512

00f24d6b6a804d1c1279a0854edf2cd5c781a1682f1b4934812328d0f26f5f7eca8bf31b2e72cd1c353fa5315abc5c3c1fd221bb539457eddc37cc9d7386354f
SSDEEP

1536:DqcpSbvOmGqFWcbhVpguyhJguac6UNuu6M7RDcD5hfPc1nm/lADXXjmi/nxFB:Gc4T0MgzhzR6GHhRO5ZgTacB

Score

N/A

Malware Config

Signatures

Files

96e6e2a3922a6cef7e91bafc2811ffc43f8e2281d9a8f2cdc04aa2754aa914fe
.exe windows x86

9d23120b441bc4a5ec03968e8dce640f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryW
OpenMutexA
GetFileAttributesA
LoadLibraryExW
CloseHandle
InterlockedExchange
GetModuleHandleA
GetDiskFreeSpaceA
SetEnvironmentVariableW
lstrcmpA
GetPrivateProfileSectionW
lstrcmpiA
CloseHandle
GetExitCodeProcess
HeapCreate
CloseHandle
GetPrivateProfileIntW
WaitForMultipleObjects
GetPrivateProfileIntW
SetFilePointer
CreateEventA
GetPriorityClass
GetDiskFreeSpaceA

certcli

CADeleteCA
CADeleteCertType
CAEnumFirstCA
CAEnumCertTypes

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE