1f917d10c6b171d8fda33577c490e6543d2ca3a7c3f4de5953eef1c48fe83aac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f917d10c6b171d8fda33577c490e6543d2ca3a7c3f4de5953eef1c48fe83aac
Size

299KB
MD5

5a65cee907cbcf8c09adcde33e49cda4
SHA1

ca6407175cbdc6d204566c9be264e6daeb20a10d
SHA256

1f917d10c6b171d8fda33577c490e6543d2ca3a7c3f4de5953eef1c48fe83aac
SHA512

7e394705d9d1ac79f2a60d9ce3fbff111997cae7ac4b82788a713997b5f7bfb086f135980141f1030734e37802783a43400faef4608324c65fbf5602c94f2964
SSDEEP

6144:jStu/uRqrCZA4FvV/q/IDc60duzt1+Fj6XCwapAoukUXtsUwgAqOiUu:wWCZAqw/IDr0duD+MXCwAeeUwE

Score

N/A

Malware Config

Signatures

Files

1f917d10c6b171d8fda33577c490e6543d2ca3a7c3f4de5953eef1c48fe83aac
.exe windows x86

571e1ed57e76ebbde089d2d89ebf31a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
SetLastError
DeleteFileA
GetVolumePathNameW
CreateNamedPipeW
lstrcmpiA
GetDriveTypeW
GetModuleHandleA
lstrcmpiA
lstrcmpiA
OpenMutexA
Sleep
lstrcmpiA
GetStdHandle
CreateMailslotA
HeapCreate
GetLogicalDriveStringsW
lstrcmpiA
WaitForMultipleObjects
GetModuleFileNameA
FileTimeToLocalFileTime
GetProcessHeap
IsValidLocale

scecli

InitializeChangeNotify
DeltaNotify
SceOpenPolicy
SceSysPrep

Sections

.text
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 291KB - Virtual size: 290KB

IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ