3542a1cdf3c56c3a7ecb2cabaecfec31922740cc3aa87d97e3795ba352a901c4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3542a1cdf3c56c3a7ecb2cabaecfec31922740cc3aa87d97e3795ba352a901c4
Size

111KB
MD5

0151f16967f431b00d2efc2938cbf580
SHA1

1bc309c1ec68880fe1e2eb20b473b926df8b0c9c
SHA256

3542a1cdf3c56c3a7ecb2cabaecfec31922740cc3aa87d97e3795ba352a901c4
SHA512

c8487101d9a3e06d4d799abade95091ab49ba23864f0188ca3667fb424aa4a52f43d76df14b513badd458cb22d320f0d59ddde26db5a3f85cfccad3bbc31b923
SSDEEP

3072:QGZ/GJTzaMFPcZifSz4nCWktnn4gPS+I/mSk06WUvreP:3MznFPnfcwEtnn4lDHZUv

Score

N/A

Malware Config

Signatures

Files

3542a1cdf3c56c3a7ecb2cabaecfec31922740cc3aa87d97e3795ba352a901c4
.exe windows x86

a0c0e2ffbd0160549561379c5040fe1f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
CreateNamedPipeA
SetLastError
GetExitCodeProcess
GetModuleHandleA
GetLocalTime
TlsFree
CreateWaitableTimerW
GetTickCount
lstrcmpiA
HeapCreate
FileTimeToLocalFileTime
lstrcmpiA
GetLogicalDrives
GetDriveTypeA
GetPrivateProfileStringA
lstrcatW
EndUpdateResourceA
lstrcmpiA
GetBinaryTypeA
GetStdHandle
IsValidCodePage
lstrcmpiA

ntmarta

AccConvertAccessToSD
EventGuidToName
EventNameFree
AccFreeIndexArray

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ