qyick_maybe_nwwswem[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

qyick_maybe_nwwswem.exe
Size

2.0MB
MD5

13ba20dd8322d7e8d115bf6000fad627
SHA1

462f083deece2ec996dbbadf7dcd99f8efea16c3
SHA256

362d20eb32d822f97ad5f032dd96560f6a46664ec040f9bb50899c59bbf3c18c
SHA512

946e15b029964481ae76dd147260e64f3281a952fe2383afd0a69ffa953e33305bb890a59a6230120a6bf645e6518c496af0cd3c26fd78b64d944f39405de158
SSDEEP

24576:vFJ4KuyRpbnwBu4NYTn3A4dqXHHWaKGDrU24yPHGep6L43WCe5bC2DVavt2b8mZl:Dp9RpTUu4NNzmaPm4mZZZz

Score

N/A

Malware Config

Signatures

Files

qyick_maybe_nwwswem.exe
.exe windows x86

9054c0325775f5decd453f47219b0d49

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetUserDefaultLangID

user32

GetClipboardSequenceNumber
GetMenuCheckMarkDimensions

Sections

.text
Size: 668KB - Virtual size: 668KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE