2eba0691f4299bdc2d7c17218b83b0e7961e898cb81e2f7a4e899ac52f5edb7e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2eba0691f4299bdc2d7c17218b83b0e7961e898cb81e2f7a4e899ac52f5edb7e
Size

11KB
MD5

8aed2ec223b45c218c2108e783362eb9
SHA1

8cf7a70dc3df3dc13d708683043e0413ed9bb781
SHA256

2eba0691f4299bdc2d7c17218b83b0e7961e898cb81e2f7a4e899ac52f5edb7e
SHA512

625bc08c0bb4bbd56380883225fb176a178fd1415def8a61fe9ef8b59756ff5eef83fde36e8e21d0b484288884728823c70ca3cdd94400b82fbffa191c00327e
SSDEEP

192:Am9FtD3oiSGpXK8fEQUfMtI4PXY687J0JaiKYq6zaeqvntJIiC/v:LDFoiSUKGEsb96Iiqv

Score

N/A

Malware Config

Signatures

Files

2eba0691f4299bdc2d7c17218b83b0e7961e898cb81e2f7a4e899ac52f5edb7e
.exe windows x86

6afa28bec8442c5edae4c41cbe81c85e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
GetModuleFileNameW
WaitForSingleObject
CloseHandle
FreeLibrary
WideCharToMultiByte
lstrcpyA
ExitProcess
GetModuleHandleA
HeapFree
GetProcAddress
HeapAlloc
CreateEventA
CompareStringA
Process32First
CreateToolhelp32Snapshot
RtlUnwind
InterlockedExchange
VirtualQuery
VirtualAlloc
HeapReAlloc
GetFileAttributesA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 994B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 624B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE