369dfaa0bd5aefa10c99fea5b396b17e19456991c21c7cfb8166ca55116997f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

369dfaa0bd5aefa10c99fea5b396b17e19456991c21c7cfb8166ca55116997f8
Size

299KB
MD5

71d4a28222fd1ce737335023ded39d98
SHA1

c44c6f26a93fa8863a7719be9b55432baf70d4ff
SHA256

369dfaa0bd5aefa10c99fea5b396b17e19456991c21c7cfb8166ca55116997f8
SHA512

3ff7019d8be15b4b21e4aebf02b0eb58b536482577c6c1fbeab3537d886d7d8d8358d9a321467c96b960a0709ea2cc2a405ab3f37425346f91ceb0fe6fdb6815
SSDEEP

6144:QfDyGqbrLNfxrfP40/vp8tNsNfNiijUpzwYlz//VgRjeJ:QrUrLNfZfP5/8NsxNi/pzwYlZgc

Score

N/A

Malware Config

Signatures

Files

369dfaa0bd5aefa10c99fea5b396b17e19456991c21c7cfb8166ca55116997f8
.exe windows x86

032bffe5df3b5e047e6b7399274af60e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
FindResourceA
LoadResource
GetTickCount
GetWindowsDirectoryA
WriteFile
Sleep
SizeofResource
CreateProcessA
LockResource
GetCurrentDirectoryA
CloseHandle
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess

msvcr90

_crt_debugger_hook
srand
rand
sprintf
memset

Sections

.peglue
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 295KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ