e188fe096815f9313fe0c96fd77d0480a410bb2efddcd8f04f01978b68563959 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e188fe096815f9313fe0c96fd77d0480a410bb2efddcd8f04f01978b68563959
Size

121KB
MD5

28f921ff420329cad16878de71850a60
SHA1

f82966f9a3137521b35da5d75a165e1dd0367c75
SHA256

e188fe096815f9313fe0c96fd77d0480a410bb2efddcd8f04f01978b68563959
SHA512

ead52aaffeb6f4185c73631212d76f4600ef016d0d2e3f995da2dfa609da3d7be45694806e89b802424d44d6ae5341b49822d5752f2720d1dd36dde1e5d4e4f8
SSDEEP

1536:JJSjS6KCvNY1RjJxrKnyWv1YBNe3kvXQMGOF54RK8SsOKHi:JubvWfm116Nokv+OwRKtYH

Score

N/A

Malware Config

Signatures

Files

e188fe096815f9313fe0c96fd77d0480a410bb2efddcd8f04f01978b68563959
.exe windows x86

fc71fa680b46865ea0a5d9bb8449788b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForMultipleObjects
CloseHandle
FindNextVolumeA
CloseHandle
GetModuleHandleA
GetEnvironmentVariableW
GetDiskFreeSpaceW
GetVolumePathNameA
OpenMutexW
FindFirstVolumeA
CreateSemaphoreA
GetStringTypeA
CloseHandle
GetFileAttributesW
GetModuleHandleW
GetFullPathNameA
GetCurrentDirectoryA
HeapCreate
ReleaseSemaphore
ReadConsoleA
lstrcmpW
GetConsoleMode
GetFullPathNameA

certmgr

DllGetClassObject
DllRegisterServer
DllUnregisterServer
DllCanUnloadNow

Sections

.text
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.pack
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE