800fb7a972345f732b0be5e92ee0889eac837a3e2353e775393d845b1bda7169 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

800fb7a972345f732b0be5e92ee0889eac837a3e2353e775393d845b1bda7169
Size

296KB
MD5

c7e01129def1831175f9b397325307d8
SHA1

21a064a97171ecbb5b870b31dc538656e526c652
SHA256

800fb7a972345f732b0be5e92ee0889eac837a3e2353e775393d845b1bda7169
SHA512

8947a26c33faff10986bc2adc4ae564acce801a67a359196ba22f6c6bd2383a6947892beb27cb404cb4190b95c0a4aedbd726e07c1e3aa4a486455a46c118b40
SSDEEP

6144:r96LzsTw0jTHwOZDoxX55mb7o+ySRIJrcyTfF:4XS/THx2X5YgpSRIJrLzF

Score

N/A

Malware Config

Signatures

Files

800fb7a972345f732b0be5e92ee0889eac837a3e2353e775393d845b1bda7169
.exe windows x86

8fcf57146ab824bb067bf2896f723f7e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
CreateFileA
LoadLibraryA
GetProcAddress
GetWindowsDirectoryW
lstrcatW
CreateFileW

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 286KB - Virtual size: 286KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ