4a61330615e70a305dbbbf3b3959d85e28f6601777ccafeb9aa6532a579744e6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a61330615e70a305dbbbf3b3959d85e28f6601777ccafeb9aa6532a579744e6
Size

55KB
MD5

859a80896837163e97fc2a32fe58ea70
SHA1

fe3a3f7c57d5c150b721b69987e16a1c3f5a2531
SHA256

4a61330615e70a305dbbbf3b3959d85e28f6601777ccafeb9aa6532a579744e6
SHA512

a4d21e8006b21269d011fc215408021960408db0799837a50f31746cb6ea75dbeade622c194e6f78992f43ec3e1e2b7863239e641e8facb46efadd142926a746
SSDEEP

1536:TR6A0WVgo5ttHEE05vU7LlHQ999RPgPaPSdQFEpmL:TRZttHOvm5Q5ReaPYQFEp

Score

N/A

Malware Config

Signatures

Files

4a61330615e70a305dbbbf3b3959d85e28f6601777ccafeb9aa6532a579744e6
.exe windows x86

d5c35351067bee512b381634df066ab0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMailslotW
lstrcmpiW
GetStartupInfoA
Sleep
lstrcmpiW
DeleteFileA
SetLastError
GetCommState
lstrcmpiW
HeapCreate
lstrlenA
GetVolumePathNameW
GetConsoleAliasW
GetLogicalDriveStringsW
GetModuleHandleA
CreateNamedPipeW
GetStdHandle
IsValidLocale
lstrcmpiW
GetModuleFileNameA
FileTimeToLocalFileTime
lstrcmpiW
GetProcessHeap

sqlunirl

AbortSystemShutdown_
_CallMsgFilter_@8
_AppendMenu_@16
wsprintf_

Sections

.text
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ