84a0345af2da38c57bd4f9c07c57997e6d79ec1d4fabe2430e09c2842ec2e63f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

84a0345af2da38c57bd4f9c07c57997e6d79ec1d4fabe2430e09c2842ec2e63f
Size

68KB
MD5

ea3a5717301ee2cf6983875d5eaed43d
SHA1

96f9d36f10931e1394638746fbe74c0986a61411
SHA256

84a0345af2da38c57bd4f9c07c57997e6d79ec1d4fabe2430e09c2842ec2e63f
SHA512

1641f19ea21b08d40682fb1a11ce0b58a0553fcef7611fe0c358f4031d24c0d5bfaf73d3a24b7376e4b6e02ab6bcc484880e02f6a109b35e4c164771c6623af8
SSDEEP

768:pZCn69TfJ0ygntCeSC1EnosGMbfaojR0uOelA/OLE+K7oDrUpe4t65yAw58aip35:MA0XnQfC1ERiojR0W++1i65dDaiL

Score

N/A

Malware Config

Signatures

Files

84a0345af2da38c57bd4f9c07c57997e6d79ec1d4fabe2430e09c2842ec2e63f
.exe windows x86

f75c0df450890343daf12bb642ebc77c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDiskFreeSpaceW
lstrcmpA
GetExitCodeProcess
WriteFileEx
CreateDirectoryA
ExitProcess
GetLongPathNameA
GetDiskFreeSpaceW
Sleep
InterlockedDecrement
GetPrivateProfileSectionA
LoadLibraryA
GetFileAttributesA
Sleep
GetPrivateProfileIntA
lstrcpyW
InterlockedIncrement
GetPrivateProfileIntA
VirtualAllocEx
Sleep
SetEnvironmentVariableA
WaitForSingleObject
FindResourceW

apphelp

ApphelpCheckIME
AllowPermLayer
ApphelpCheckExe
SdbCreateMsiTransformFile

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rss
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ