57ed68b9385dd59a52f820f3613706084376d8f987aeb64cbd16d3c0b9d2ddba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

57ed68b9385dd59a52f820f3613706084376d8f987aeb64cbd16d3c0b9d2ddba
Size

104KB
MD5

27bef49c2d7fd20943fc791b4d6a1167
SHA1

46ed6ff0f96f5e08c6da47c6b29d48df6409e983
SHA256

57ed68b9385dd59a52f820f3613706084376d8f987aeb64cbd16d3c0b9d2ddba
SHA512

d32a05294da3feb530c7cddfe471f5de55825d1c7d8657a78f6ce00c529ccd5657d2f826d58ad4caf7c1560826968f5b46239100702a94ae031ffe26cd3fab18
SSDEEP

3072:tTLxJIpRrKpY9zfiT3cF/Y3ToHLoTS59N4:t5GzrKpYFKsF/Y3EHMW

Score

N/A

Malware Config

Signatures

Files

57ed68b9385dd59a52f820f3613706084376d8f987aeb64cbd16d3c0b9d2ddba
.exe windows x86

822500c66e8c63aec51c1758dd5dfcb5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResumeThread
CreateProcessW
CreateWaitableTimerW
ReadProcessMemory
CancelWaitableTimer
GetProcAddress
CreateEventW
CreateThread
GetCurrentProcess
FindFirstChangeNotificationW
GlobalFree
FindNextFileW
SetCurrentDirectoryW
LoadLibraryA
lstrcpyW
LoadLibraryW
GetLastError
SizeofResource
GetPrivateProfileStringW
lstrlenW
FreeLibrary
SetThreadPriority
VirtualFree
TerminateThread
CreateFileW
FindClose
SetLastError
GetTickCount
WriteFile
GetLocalTime
LoadResource
GetModuleHandleW
Sleep

gdi32

CreateBitmap
CreateCompatibleBitmap
GetStockObject
BitBlt
MoveToEx
CreateFontIndirectW
GetDeviceCaps
GetClipBox
CreateDCW
DeleteDC
GetObjectW
CreateICW

Sections

.qghjudh
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xjyxb
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.yoiqt
Size: 4KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE