390250fcf60ff216f8da37d6e59c9aad7360e3e6eade0659f7f8bb162c9bc812 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

390250fcf60ff216f8da37d6e59c9aad7360e3e6eade0659f7f8bb162c9bc812
Size

66KB
MD5

60acf792c0940b9944c05897f4b66200
SHA1

a046e05d505db44c0805283bee44687945413eb8
SHA256

390250fcf60ff216f8da37d6e59c9aad7360e3e6eade0659f7f8bb162c9bc812
SHA512

4728bf7df7d6353b5038428f1a5e11f16c974dc863f2a17857be87847a269e05d4e25ef85ab5c5885f0a1d0c8ad4a05ac3a595dffca2bffe062305a3ab078f52
SSDEEP

1536:/34Oq7j4kdFUfv2faimpgH21j3M5fd1gCYN:/34OqH53UfvQamSMZfs

Score

N/A

Malware Config

Signatures

Files

390250fcf60ff216f8da37d6e59c9aad7360e3e6eade0659f7f8bb162c9bc812
.exe windows x86

356a3ff915a0cd5df09a5c76b99cb9c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDiskFreeSpaceW
CloseHandle
lstrcmpW
CreateDirectoryW
CloseHandle
LoadLibraryA
GetEnvironmentVariableA
HeapCreate
GetFullPathNameA
lstrcmpiW
ReleaseSemaphore
GetPrivateProfileSectionW
WaitForMultipleObjects
GetExitCodeThread
CloseHandle
CreateEventW
GetPrivateProfileIntW
GetModuleHandleA
GetVolumePathNameA
GetFileAttributesW
GetPrivateProfileIntW
GetFullPathNameA
OpenMutexA

certmgr

DllUnregisterServer
DllCanUnloadNow
DllRegisterServer
DllGetClassObject

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ