2c8119c5ede1b11052a91acc76856780c8f0f5e7b8d44f7d71c769c1208990fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c8119c5ede1b11052a91acc76856780c8f0f5e7b8d44f7d71c769c1208990fc
Size

816KB
MD5

17d8fefb94ab2968d0d5ad1a6cf7c17b
SHA1

125a7dabd9429d50a9d6f3d374c0aca3b153f3fb
SHA256

2c8119c5ede1b11052a91acc76856780c8f0f5e7b8d44f7d71c769c1208990fc
SHA512

2f1d70af3bc0bf7f4964755f66c4a698d5c696a6f52ed1c612a2a2c2af70b0c1bed02ff38ea9165d96230d9126788d81d8591f2be6220ee6eacb7d53bddccda1
SSDEEP

12288:r56kkQAL7XbUoKv362l9pdrrnYy4c9Wk4WKU2Sn+eIQd3RiwEGO5eSoy:SDiy2npBbY8bLKU2Sq4swEPefy

Score

N/A

Malware Config

Signatures

Files

2c8119c5ede1b11052a91acc76856780c8f0f5e7b8d44f7d71c769c1208990fc
.exe windows x86

4e53984072b9cacd478bac5669440dfb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetLocaleInfoW
SetThreadPriority
lstrlenA
SetCurrentDirectoryW
GetFileSize
GetModuleHandleA
TlsGetValue
lstrlenA
DeleteFileW
GetCurrentThreadId
FormatMessageW
lstrlenA
VirtualFree
OpenMutexA
CreateDirectoryA
lstrlenA
lstrcatA
VirtualProtect
WriteConsoleW
lstrlenA
lstrlenA
GetDiskFreeSpaceA
lstrlenA
lstrcmpA
lstrlenA
lstrlenA
lstrlenA
GetPrivateProfileIntA
GetCommandLineA

cdosys

DllRegisterServer
DllGetClassObject
DllUnregisterServer
DllCanUnloadNow

Sections

.TEXT
Size: 17KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.adata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE