749851b761f1f93ff90d4aca3e84353b01c00844a216619d401b70ad893460e5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

749851b761f1f93ff90d4aca3e84353b01c00844a216619d401b70ad893460e5
Size

301KB
MD5

1485dafb6c44292341abd64be7dc3ee0
SHA1

8f05cc9f22453303981edbdaf57cefef414841b9
SHA256

749851b761f1f93ff90d4aca3e84353b01c00844a216619d401b70ad893460e5
SHA512

583093decf98f73068e21a58b8592c15223f9ab10ad8ba75d8c84ca4f64c1aec7ba85893bb1bdd60c709720604d6354b889e725b3ede7a2ceee58213621f8264
SSDEEP

6144:DuRCoqYXlwwMzcKFZ8ot/kGhD9+k2QNn+Dn2+9Oh/Dw5xvsdNDNsS8p:0CohXlkx2GhDQR7s/65p

Score

N/A

Malware Config

Signatures

Files

749851b761f1f93ff90d4aca3e84353b01c00844a216619d401b70ad893460e5
.exe windows x86

b9b63514fca52b50027ecd321d169be6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
OpenMutexA
lstrcmpiA
GetLogicalDriveStringsW
GetStdHandle
GetProcessHeap
FileTimeToLocalFileTime
lstrcmpiA
HeapCreate
lstrcmpiA
WaitForMultipleObjects
lstrcmpiA
GetModuleHandleA
IsValidLocale
GetDriveTypeW
GetVolumePathNameW
DeleteFileA
GetModuleFileNameA
SetLastError
lstrlenA
CreateNamedPipeW
lstrcmpiA
CreateMailslotA

scecli

DeltaNotify
SceSysPrep
InitializeChangeNotify
SceOpenPolicy

Sections

.text
Size: 2KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 294KB - Virtual size: 293KB

IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ