f1aab648f68384ec3c881002151e6f73d881457bc9fe498284bb79855ce6e93b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f1aab648f68384ec3c881002151e6f73d881457bc9fe498284bb79855ce6e93b
Size

62KB
MD5

0d0bce70b1db0c506fe0549b9be14c60
SHA1

26fb4a3dbe3d93fb7bdcb7f63798a1b305ccf2ab
SHA256

f1aab648f68384ec3c881002151e6f73d881457bc9fe498284bb79855ce6e93b
SHA512

1cca4e02a9afa5b8244b0f3fb28e55a4e863752408031387e4055da98992f84c670f5ec382e9525bbbe6321968ac9945418bd58833482dd4f215b439bb4faf6c
SSDEEP

1536:lpPoOkBE1PNUaU2KCx6xOkApnnnFYWK05LVf:lloZm1qkxIOkApnnnFYWK0Tf

Score

N/A

Malware Config

Signatures

Files

f1aab648f68384ec3c881002151e6f73d881457bc9fe498284bb79855ce6e93b
.exe windows x86

f6be8527b1326295f040fbcaabd04965

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeThread
HeapCreate
GetPrivateProfileIntW
CreateEventA
lstrcmpW
GetModuleHandleA
GetDiskFreeSpaceA
CloseHandle
GetDiskFreeSpaceA
CloseHandle
GetFileAttributesA
GetPrivateProfileSectionW
GetPriorityClass
SetEnvironmentVariableW
CreateDirectoryW
LoadLibraryExW
InterlockedExchange
WaitForMultipleObjects
CloseHandle
OpenMutexA
lstrcmpiA
GetPrivateProfileIntW
SetFilePointer

certmgr

DllCanUnloadNow
DllRegisterServer
DllUnregisterServer
DllGetClassObject

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE