hello[.]exe | Triage

General

Target

hello.exe
Size

12KB
MD5

73fc73327783838e6c485645c1019522
SHA1

843e53fe931cf860e7c4b34ef25c01a683b111b2
SHA256

f8577cda81d88abbeddd27387cd88fe981363a9ced4ecd639b36ca5797328c1c
SHA512

e6f0fa293f829b7d30b3bb5201de74e693f6a9af99c49c4bb91dfa383e07b9041c308470df7c5f5dc0aa85ee89cc4189c1346512d14b061512b6120929e0b8c1
SSDEEP

192:wB7+3SSwpqI4IuxVK2aC2BXLUnlLmLbEa8iuac0l/uleHNWF:8+3StF6VsC2QLmLN8iuel/u/

Score

N/A

Malware Config

Signatures

Files

hello.exe
.exe windows x86

76e70c7c3525f4227ecbcdf6893bd579

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
GetLastError
GetStartupInfoA
InitializeCriticalSection
LeaveCriticalSection
SetUnhandledExceptionFilter
Sleep
TlsGetValue
VirtualProtect
VirtualQuery

msvcrt

__getmainargs
__initenv
__p__acmdln
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_amsg_exit
_cexit
_initterm
_iob
_onexit
abort
calloc
exit
fprintf
free
fwrite
getchar
malloc
memcpy
signal
strlen
strncmp
vfprintf

libstdc++-6

_ZNSolsEPFRSoS_E
_ZNSt8ios_base4InitC1Ev
_ZNSt8ios_base4InitD1Ev
_ZSt4cout
_ZSt4endlIcSt11char_traitsIcEERSt13basic_ostreamIT_T0_ES6_
_ZStlsISt11char_traitsIcEERSt13basic_ostreamIcT_ES5_PKc

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.eh_fram
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 604B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

76e70c7c3525f4227ecbcdf6893bd579

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

libstdc++-6

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 204B

.eh_fram Size: 512B - Virtual size: 136B

.tls Size: 512B - Virtual size: 8B

.reloc Size: 1024B - Virtual size: 604B

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 204B

.eh_fram
Size: 512B - Virtual size: 136B

.tls
Size: 512B - Virtual size: 8B

.reloc
Size: 1024B - Virtual size: 604B