65e95c9fcae1ad9426293b6484146df977c232fa71af619b91766c04dd6845e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

65e95c9fcae1ad9426293b6484146df977c232fa71af619b91766c04dd6845e7
Size

119KB
MD5

01c87e9965be8d4c6553322a62831710
SHA1

76c1dd98b800124744f61385a32d076938372c4a
SHA256

65e95c9fcae1ad9426293b6484146df977c232fa71af619b91766c04dd6845e7
SHA512

999c4df8b3273cce9634fae6ea8e4e8885b2b0bef36d79350336042bc35815d55573447e49f57e608048dcfe0ead63eed49f9d883c062e334fe9d766a0c3a967
SSDEEP

1536:KxtCT2YVcDGg7S0pIZk6xj7uJMXlNpRnEvGNOLlkwVNIlgEK0k/gRe+JiYAtRrRO:MCT2YCD9vIewjq67SGN8NIlgJ+iJruo

Score

N/A

Malware Config

Signatures

Files

65e95c9fcae1ad9426293b6484146df977c232fa71af619b91766c04dd6845e7
.exe windows x86

3a4e5e161f7e8c5241351809a31ae45c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
WaitForMultipleObjects
GetStringTypeA
ReleaseSemaphore
OpenMutexW
GetFullPathNameA
ReadConsoleA
lstrcmpW
FindNextVolumeA
GetCurrentDirectoryA
GetModuleHandleA
GetEnvironmentVariableW
CloseHandle
GetVolumePathNameW
CloseHandle
GetDiskFreeSpaceW
CreateSemaphoreA
GetFileAttributesW
GetConsoleMode
CloseHandle
GetFullPathNameA
FindFirstVolumeA
GetModuleHandleW

dbghelp

ImageRvaToSection
FindFileInPath
ImageRvaToVa
ImageNtHeader

Sections

.text
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.res
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE