120cc98cb7552bd050554100b81703cf7e5b0a83f456ad7629560529d1bede8b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

120cc98cb7552bd050554100b81703cf7e5b0a83f456ad7629560529d1bede8b
Size

227KB
MD5

61881a9a1a5d35a89fcea750be613a20
SHA1

468f2b6cd39f42bf1322bfb6a1f350786c8724fe
SHA256

120cc98cb7552bd050554100b81703cf7e5b0a83f456ad7629560529d1bede8b
SHA512

a348b2b3cbad4bd2c4644297723506cd4f2acd160c7d165a7ac090f0312c6a1226ebbfc762eb83896fd715a11c1fc12599df339651ec80caf34f577e879701d8
SSDEEP

3072:lT1zTFXOhQjncpx+mzZTiU2giLRJu7ayhkZpoJEb3yS5V0CQIX5kJjNY9vXev3NM:lPOhVFtTiUv3bqbCS5eRI6JpkvK3R14

Score

N/A

Malware Config

Signatures

Files

120cc98cb7552bd050554100b81703cf7e5b0a83f456ad7629560529d1bede8b
.exe windows x86

7b1e9f1db91937c25dcae44440f8069c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateMutexA
CreateProcessA
ExitProcess
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetThreadContext
GetTickCount
LoadLibraryA
OpenProcess
ReleaseMutex
ResumeThread
RtlMoveMemory
RtlZeroMemory
SetThreadContext
Sleep
VirtualAllocEx
WaitForSingleObject
WriteProcessMemory

Sections

.text
Size: 225KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE