966221b701665205e17cb7268c2eef8c86f862c6bc539dfa994f67a01f1378ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

966221b701665205e17cb7268c2eef8c86f862c6bc539dfa994f67a01f1378ac
Size

57KB
MD5

1d8f4cf7b7f72b36de234b64e8225dd0
SHA1

2737b0e922dffc108f81028b047826770a8bb349
SHA256

966221b701665205e17cb7268c2eef8c86f862c6bc539dfa994f67a01f1378ac
SHA512

ef682685ff8b5a8e39d472f9838df3a923c796ed7400e5668e8d4194584ffed60837b4d405699ccd363c3c93dfbb39e73ed09f1b6ae826fb71958747dcade011
SSDEEP

1536:9wBEkb/QXxfSxPGtQtXzN2gxdOdmTWK/7ay:9wBEkbKx60qzIgTOQTWK/

Score

N/A

Malware Config

Signatures

Files

966221b701665205e17cb7268c2eef8c86f862c6bc539dfa994f67a01f1378ac
.exe windows x86

2d17c1fd0ce4552c795639bb1d37284d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
GetDriveTypeW
lstrcmpiA
FileTimeToLocalFileTime
WaitForMultipleObjects
lstrlenA
lstrcmpiA
CreateNamedPipeA
HeapCreate
lstrcmpiA
SetLastError
GetModuleFileNameA
IsValidLocale
GetLogicalDriveStringsA
GetProcessHeap
Sleep
GetStdHandle
CreateMailslotA
GetModuleHandleA
DeleteFileA
OpenMutexA
lstrcmpiA
GetVolumePathNameA

scecli

InitializeChangeNotify
SceSysPrep
DeltaNotify
SceOpenPolicy

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ