766a3120ef9744aad5706eb47207db46e8e636d5902b22760269e77c333cbaa1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

766a3120ef9744aad5706eb47207db46e8e636d5902b22760269e77c333cbaa1
Size

60KB
MD5

3224d1fbf8937cd8f55bbd0ea55f3bc0
SHA1

3e4965320f14af3393c0a61b4037d201058ec862
SHA256

766a3120ef9744aad5706eb47207db46e8e636d5902b22760269e77c333cbaa1
SHA512

5877ee63331918add8a98c0908cd95a93dc69dff94bdeebf9925443a622fb3306d2fa85ad399bdcfdd9c4499bb40383686ca61c2b8fdf69175886f04c14e2116
SSDEEP

1536:ZozU8fAAXGK9C5MiBpe0bLnMQaYCcIqKmyOHTU:yAiGKN2pe0nJOM5vz

Score

N/A

Malware Config

Signatures

Files

766a3120ef9744aad5706eb47207db46e8e636d5902b22760269e77c333cbaa1
.dll windows x86

153027ec3b10bcea606b777657dd3402

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
TerminateProcess
OpenProcess
LoadLibraryA
CloseHandle
GetProcAddress
FreeLibrary
GlobalFree
lstrcpyA
DisableThreadLibraryCalls

msvcrt

strcmp
_strupr
toupper
strlen
free
_initterm
malloc
_adjust_fdiv
strcpy
_itoa

Exports

Exports

KillProc

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE