f9f24a57f72da39bc7eaddf77dcfd1b2d656904831e8ff8be227f9c254316902 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9f24a57f72da39bc7eaddf77dcfd1b2d656904831e8ff8be227f9c254316902
Size

128KB
MD5

6426c48f0546ace1f1d9951b722c0842
SHA1

9a0ec97c19375ba3683986c554d10610567ed22c
SHA256

f9f24a57f72da39bc7eaddf77dcfd1b2d656904831e8ff8be227f9c254316902
SHA512

3222a73907334e683ece3aeda95043a8464c32cd1a3ad0c07de1c8c67ae70fa18c9cff35e878e48a63b7fd40bcf3a509fec9be6d38ae3d6bf0cb05ba9410a7b5
SSDEEP

1536:t3juHq+1SiTPJ+kGkrEcN9n45Dc1gNi7cSqx2yl80zdE0F/JM5BbbQnLRFmAcE24:t+X11+8QmnxctxRllkngLp924

Score

N/A

Malware Config

Signatures

Files

f9f24a57f72da39bc7eaddf77dcfd1b2d656904831e8ff8be227f9c254316902
.exe windows x86

393ecaf2d6ca2b3aaaf0f47a17045837

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
_exit
_adjust_fdiv
_XcptFilter
_except_handler3
free
_controlfp
_initterm
__getmainargs
calloc
__set_app_type
__p___initenv
__p__fmode
atan2

kernel32

GlobalUnlock
ExpandEnvironmentStringsA
DeleteFileA
IsBadReadPtr
GetThreadLocale
LocalFileTimeToFileTime
WaitForMultipleObjects
VirtualProtect
CompareFileTime
DeleteFileW
lstrcmpA
LCMapStringW
IsBadCodePtr
DeviceIoControl
GetModuleHandleW
GetProcAddress
MulDiv

Sections

.text
Size: 1024B - Virtual size: 562B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ