3fb514aafba964050ea43dd42f6b257a3839d68a6ad8d2274ed6f487520067a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fb514aafba964050ea43dd42f6b257a3839d68a6ad8d2274ed6f487520067a0
Size

117KB
MD5

22f4766a9d989a25827f3e4df5b6fad0
SHA1

70eb6a8547b55dde61647aa88ac53949ac0cbfc1
SHA256

3fb514aafba964050ea43dd42f6b257a3839d68a6ad8d2274ed6f487520067a0
SHA512

c7f10f6a88cddf5e55ef553860064be371858b301b9c2dee89ca30629f98a787e1d938ec9026a6aa9ed57a0c86587b893ffd45b1992338634a5ffe734d889141
SSDEEP

3072:euj0G42qiwjRKBKic8nxUaJNpsSl5T4yWE3gSqM:xc8KDMUuDvX403

Score

N/A

Malware Config

Signatures

Files

3fb514aafba964050ea43dd42f6b257a3839d68a6ad8d2274ed6f487520067a0
.exe windows x86

e3bcf41f9c1fbccff6627f7d054b9972

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
GetModuleHandleA
GetPrivateProfileStringW
lstrcatW
lstrcmpiA
GetStdHandle
GetTickCount
GetExitCodeProcess
lstrcmpiA
GetBinaryTypeA
HeapCreate
FileTimeToLocalFileTime
GetLogicalDrives
CreateNamedPipeA
lstrcmpiA
CreateWaitableTimerW
EndUpdateResourceA
IsValidCodePage
SetLastError
TlsFree
lstrcmpiA
GetDriveTypeA
Sleep

ntmarta

EventGuidToName
EventNameFree
AccFreeIndexArray
AccConvertAccessToSD

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 607B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ