cfdc33d19c029d055f0546a86305d3bfadff76c4d4f3361654dcbc2e0a6c5469 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cfdc33d19c029d055f0546a86305d3bfadff76c4d4f3361654dcbc2e0a6c5469
Size

26KB
MD5

b0b50149a712fd0d22dd26bf1e0a7ecd
SHA1

97370c4a161090187f7b95630ec8d2fb26222585
SHA256

cfdc33d19c029d055f0546a86305d3bfadff76c4d4f3361654dcbc2e0a6c5469
SHA512

ff2a9488d3eea6e458c6a7a13daaa1194a0014d2cfd804a087a234ef36b202de4a28dde66f92f5dde9dfc50a88b9f8da84698f0feccac6b9cb4af74e354fb0b7
SSDEEP

768:1yvhLDd6l7vjtR2/I8GQFEJZ95BuKbMS4+:uLDcl77tR2Q8GL95

Score

N/A

Malware Config

Signatures

Files

cfdc33d19c029d055f0546a86305d3bfadff76c4d4f3361654dcbc2e0a6c5469
.exe windows x86

db3b2cd368e42ed217b545ab175dd884

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleHandleA
GetProcAddress
LoadLibraryA
Sleep
VirtualAlloc

Sections

.text
Size: 512B - Virtual size: 364B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 256B - Virtual size: 214B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 256B - Virtual size: 51B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hehe
Size: 23KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE