9fde46aff37b623913e48d2cb2d46b3ae1d32ee0a150b9cecea755a03bd6d20b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9fde46aff37b623913e48d2cb2d46b3ae1d32ee0a150b9cecea755a03bd6d20b
Size

168KB
MD5

6604cd4146c1baa97fd7a36c16d4232a
SHA1

71fb077e443eb7de5a722ce5c598eaea63e058f4
SHA256

9fde46aff37b623913e48d2cb2d46b3ae1d32ee0a150b9cecea755a03bd6d20b
SHA512

b1e41ea3bf88ff428dc2db856cb31749e0592499350b6db5f27b8c4341a06108d81b4bf285625dfb1ecd932ec3d4feaa0b70434f5e15c2c126906c9002a8cadd
SSDEEP

3072:nw6BO3eKLi4m/6aiEkb1D5N1iFV8j1oWHn2Hpk7nfHGyFrOO2utgPY9:wMOOKL4e1dY8jvnckrffMEtmI

Score

N/A

Malware Config

Signatures

Files

9fde46aff37b623913e48d2cb2d46b3ae1d32ee0a150b9cecea755a03bd6d20b
.exe windows x86

125fdf184560cb4860abf4dfe3fe70e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
CreateFileA
GetCurrentProcess
CloseHandle
LoadLibraryA
LCMapStringA
ExitProcess

user32

CloseWindow
CreateWindowExA
CharLowerBuffA
SetWindowLongA
wsprintfA

advapi32

RegCreateKeyA
RegQueryValueA
RegSetValueA
RegCloseKey
RegOpenKeyA
RegEnumValueA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA

Sections

.text
Size: 150KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ