df5f1b802d553cddd3b99d1901a87d0d1f42431b366cfb0ed25f465285e38d27 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df5f1b802d553cddd3b99d1901a87d0d1f42431b366cfb0ed25f465285e38d27
Size

404KB
MD5

5a22e5aee4da2fe363b77f1351265a00
SHA1

9edecb01897b2984daa29c979701e6df7c75160a
SHA256

df5f1b802d553cddd3b99d1901a87d0d1f42431b366cfb0ed25f465285e38d27
SHA512

3bebb1f911110846334d0c957cd3e9356b8f51b769e0dc356f66079ba3858668dbb6a17bb4e1b37e59874276931d155bee6b19ac1f3b1d95a2598b5c6e83c8f8
SSDEEP

6144:Na/PSOE9OPXCQpA3abFUntBrDP3FVPsCE2NiYfFei78GlGeYO:IPSOE9OPXCQpAK5YBvPPPrZVkiY2Y

Score

N/A

Malware Config

Signatures

Files

df5f1b802d553cddd3b99d1901a87d0d1f42431b366cfb0ed25f465285e38d27
.exe windows x86

ae984e4ab41d192d631d4f923d9210e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
VirtualProtect
HeapAlloc
GetProcessHeap
CloseHandle
CreateThread
WaitForSingleObject
CreateEventA
CreateMutexA
OpenMutexA
GetModuleFileNameA
VirtualAlloc
RtlUnwind
HeapFree
ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapReAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
WriteFile
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 372KB - Virtual size: 371KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ