abf3dd0e3fca7fac4a421830943480d1cdcbdbc944d35f5b00f63f4fa64c3b65 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abf3dd0e3fca7fac4a421830943480d1cdcbdbc944d35f5b00f63f4fa64c3b65
Size

123KB
MD5

385172850d8555cf5d818511780ccae0
SHA1

38087e8e9493d181c08567137b704b7ccfef49d9
SHA256

abf3dd0e3fca7fac4a421830943480d1cdcbdbc944d35f5b00f63f4fa64c3b65
SHA512

f71ded1d23bf9a7c0843bc2500b9b1eb31641f781507a223fd59f0ee93212e4b7641e4af5d7e59da055ef8171858822ca86d81bb258b349550fd0b0de2643439
SSDEEP

1536:ZBiXW0BN1b+MTcNXe7X/weTiL0wxpTt1KTqtnmSeEu9KB3KvKbWb2A5c1i6FdZhw:ZCWSAeIe2xJKTemSQlvqWyAATZ89

Score

N/A

Malware Config

Signatures

Files

abf3dd0e3fca7fac4a421830943480d1cdcbdbc944d35f5b00f63f4fa64c3b65
.exe windows x86

a8795c96e284bbb13e080b594ad3ce1f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
Sleep
GetLongPathNameW
lstrcpyW
GetFileAttributesA
LoadLibraryExA
GetPrivateProfileIntA
InterlockedDecrement
Sleep
GetPrivateProfileIntA
GetExitCodeProcess
WaitForSingleObject
GetDiskFreeSpaceW
CreateDirectoryA
WriteFileEx
FindResourceW
SetEnvironmentVariableA
GetPrivateProfileSectionA
InterlockedIncrement
LoadLibraryA
lstrcmpA
GetDiskFreeSpaceW
HeapCreate

apphelp

ApphelpCheckExe
SdbDeletePermLayerKeys
ApphelpCheckIME
AllowPermLayer

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rss
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ