c6c46a6bb9836681052d424a0c299d7640fdec1248b91c47d3f0e7045dbec954 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6c46a6bb9836681052d424a0c299d7640fdec1248b91c47d3f0e7045dbec954
Size

301KB
MD5

4e2894373f61485e5a8325ca8d73d8df
SHA1

cd7f8f6055c6355d30de8d5dc3b9f90c8e946532
SHA256

c6c46a6bb9836681052d424a0c299d7640fdec1248b91c47d3f0e7045dbec954
SHA512

12cc793b7d76e709828889d3ee8ddb71379338ce1e26b343c48767a22b1370c0772157b88b2d2f799c85ab66f862b8f7e2f3a40f22d5882fb77ac578fff00aaf
SSDEEP

6144:Ny3JLTli2o0U2KfKnqN29/RxBx9/bqVBzkhYmTYrltetjkQexSpD:o50XNoqWnh/bqrcJsv+1exID

Score

N/A

Malware Config

Signatures

Files

c6c46a6bb9836681052d424a0c299d7640fdec1248b91c47d3f0e7045dbec954
.exe windows x86

41507753530d76bf751bd1509806ec8e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

Sections

CODE
Size: 250KB - Virtual size: 684KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE