582d1867182426879157cf12fc94e5a96011804d1b95125312cf740df11d00c6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

582d1867182426879157cf12fc94e5a96011804d1b95125312cf740df11d00c6
Size

832KB
MD5

6d7dcc1901f9860fa16c97cfe8571661
SHA1

e69bfc7b11c7a749627c637ce4cf57022fb960fa
SHA256

582d1867182426879157cf12fc94e5a96011804d1b95125312cf740df11d00c6
SHA512

a829f2c13f95cacec0273cf56052ab0f595de7e87da8f76d6722225af31bab146fb27270dc1c6b0367ce92572e6303b2de3ac724e7333d29e0b255cd68eb218d
SSDEEP

24576:HLBG8Bfx5DYyIm7y8LqoaN0pENtZRgfBxkEn:HL88BfnDYyImuqDXpENtZOk0

Score

N/A

Malware Config

Signatures

Files

582d1867182426879157cf12fc94e5a96011804d1b95125312cf740df11d00c6
.exe windows x86

7d015ecae74409d1b7ec9404abdeefa8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetStdHandle
SetEnvironmentVariableA
lstrlenA
GetDiskFreeSpaceA
WriteConsoleW
GetTickCount
HeapFree
CreateEventA
GetModuleHandleA
GetStringTypeA
VirtualProtect
GetPrivateProfileIntA
OpenEventW
GetTimeFormatW
GetDriveTypeW
GetShortPathNameW
GetVolumeInformationW
lstrcatW
CreateMutexA

msftedit

RichEditWndProc
REExtendedRegisterClass
RichListBoxWndProc
RichComboBoxWndProc

Sections

.CODE
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2.9MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: 803KB - Virtual size: 802KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE