8c9e104b5e78ce545cc59b84ed610b09e1c7ab0d4bb9340b26fadf5cf1a64d15 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c9e104b5e78ce545cc59b84ed610b09e1c7ab0d4bb9340b26fadf5cf1a64d15
Size

304KB
MD5

345de54203766e30c9ffc9d843bc8910
SHA1

09ec835d2ab90a6c3a6a87f54ccd76d96a5686c5
SHA256

8c9e104b5e78ce545cc59b84ed610b09e1c7ab0d4bb9340b26fadf5cf1a64d15
SHA512

117427c264c2a2ad8fb6acaf420294130810724bb7a19afff13c3da1d0592b1b49a348d947663872ec60c71a6bcdd8971bb7b2c9501338072c88ccc6de1c8639
SSDEEP

6144:l/PqtgzWDqgN8QUwGQCML106L1bR5yj9DrIewsivs8/Crg+jIneVW:l/Pqtga9N8QnGgLX9RAJ3JivX/3XeVW

Score

N/A

Malware Config

Signatures

Files

8c9e104b5e78ce545cc59b84ed610b09e1c7ab0d4bb9340b26fadf5cf1a64d15
.exe windows x86

e86d9ad4a8bb2db8c2ec90d7df7f0f2c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceW
HeapCreate
CreateDirectoryA
GetExitCodeProcess
GetPrivateProfileIntW
SetEnvironmentVariableW
GetPrivateProfileSectionA
lstrcmpiA
GetFileAttributesA
WaitForSingleObject
Sleep
GetLongPathNameW
GetDiskFreeSpaceA
WriteFileEx
LoadLibraryExA
GetPrivateProfileIntW
GetDiskFreeSpaceA
Sleep
lstrcmpA
GetModuleHandleA
InterlockedIncrement
Sleep
InterlockedExchange

catsrv

CreateComponentLibraryTS
OpenComponentLibraryTS
DllCanUnloadNow
GetCatalogCRMClerk

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 297KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE