72ba5556c703e6bbd8d249bec166065bdc6e573aa1d59ffb8804b970d22af74d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

72ba5556c703e6bbd8d249bec166065bdc6e573aa1d59ffb8804b970d22af74d
Size

126KB
MD5

3da636f350a539ecec08048e9a8a9a3b
SHA1

232400895505ba3e98383c5b405cb2d3f7412770
SHA256

72ba5556c703e6bbd8d249bec166065bdc6e573aa1d59ffb8804b970d22af74d
SHA512

7e6cd2e1e9dd0ca63bac71309ebc5b7f3ade892931fcdb8bba862a2210e685fe33dcba557eda468577de972b107cbdfa339cf427a89fb85d06f3326645296fcf
SSDEEP

1536:rnlddbSB5R+fNU/VCXeqBtXKpHuc+5PLJlv8VxV4grcibvKKE3G13ZCh3e+dwWH6:rcbR+fNU/VCu/DiSxVw8MJdwWo1kvI

Score

N/A

Malware Config

Signatures

Files

72ba5556c703e6bbd8d249bec166065bdc6e573aa1d59ffb8804b970d22af74d
.exe windows x86

965006864453401e99638a1d96338a34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
VirtualQuery
GetCommandLineW
GetPrivateProfileStringA
DuplicateHandle
GetProcAddress
GetUserDefaultLCID
GetLocaleInfoW
GetModuleHandleW
VirtualProtectEx
GetVersionExW
GetFileAttributesW
GetSystemDirectoryW
SetThreadLocale
IsDBCSLeadByte
GetProcessHeap
CompareStringA

msvcrt

_except_handler3
__p__fmode
free
__getmainargs
__p___initenv
_controlfp
calloc
__set_app_type
__p__commode
_exit
__setusermatherr
_initterm
_adjust_fdiv
_XcptFilter

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 27KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE