08cf0b4195380515e5856e2b4a137175f7810c305bfb6f13843f252a409ed3b7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08cf0b4195380515e5856e2b4a137175f7810c305bfb6f13843f252a409ed3b7
Size

817KB
MD5

68660de909a23db1e9facfa89a8f8318
SHA1

eed3dbc82fea2894cabda6a07b3ca4897e959447
SHA256

08cf0b4195380515e5856e2b4a137175f7810c305bfb6f13843f252a409ed3b7
SHA512

bf8d9279e76992fc7e98a76649970b762bf64d07370d08efa2d7f137bd7d7776b0fbafa1a3adf246db48f400cb7e301fe200bc19abce5a5bc178d182281582fc
SSDEEP

24576:G8e3NjEnPC3V/ytBhJCitnb6v6OnEU58EH:w3NoC38tBD9qDn18E

Score

N/A

Malware Config

Signatures

Files

08cf0b4195380515e5856e2b4a137175f7810c305bfb6f13843f252a409ed3b7
.exe windows x86

5820c9a3c62a8635c2ebcabc3f7eb266

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtectEx
lstrcpynA
OpenMutexW
GetDiskFreeSpaceW
GetCurrentDirectoryA
lstrcatA
DeleteFileW
SetThreadPriority
CreateDirectoryW
lstrcpynA
VirtualFree
lstrcpynA
GetFileSize
lstrcpynA
ReadFile
GetPrivateProfileIntA
GetCommandLineW
lstrcpynA
FormatMessageW
lstrcpynA
GetCurrentThreadId
lstrcpynA
lstrcpynA
lstrcmpA
GetFileType
lstrcpynA
ReadConsoleA
lstrcpynA

certcli

CAEnumNextCA
CADeleteCertType
CAEnumFirstCA
CAFindByCertType

Sections

.text
Size: 17KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ