2cee1d069647090b3011abb1b71be2fbe6717fb964d57b104472ba066b2a6b5d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2cee1d069647090b3011abb1b71be2fbe6717fb964d57b104472ba066b2a6b5d
Size

52KB
MD5

6f0495a74b6e4675bc657250a96dd9a0
SHA1

4fb6c85b3bcb6f800fe6f98553e91d98c76ff0d2
SHA256

2cee1d069647090b3011abb1b71be2fbe6717fb964d57b104472ba066b2a6b5d
SHA512

f37e1b22f69265691ac233c0d28819282bd7174045e2da5f0655db9d0a5a83352e38b9888131dad6e403629ec1d8d11fb77f712cefd9ca103c3f1d443152c924
SSDEEP

768:QgPQBdlDOI/pdoAFzPp3KH4AtGLZgF9rGxu2e/q/NZKmoYvG:/PQBdlDdvoAFzp3RgzrGw2mc5oyG

Score

N/A

Malware Config

Signatures

Files

2cee1d069647090b3011abb1b71be2fbe6717fb964d57b104472ba066b2a6b5d
.dll windows x86

856a9e6e7f996c11c238f0ded0edca55

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetLastError
LoadLibraryA
RtlUnwind
GetCurrentThreadId
TlsSetValue
SetLastError
TlsGetValue
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
HeapAlloc
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
HeapFree
GetModuleFileNameA
VirtualFree
VirtualAlloc
HeapReAlloc
TerminateProcess
GetCurrentProcess
WideCharToMultiByte
GetStdHandle
WriteFile
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Exports

Exports

SHGetFolderPathA
UninitializeCom

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ