b67f3c6d026190a694ae6c650b7889491ad77515dbd2b1671e5c6cd97f9ffc45 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b67f3c6d026190a694ae6c650b7889491ad77515dbd2b1671e5c6cd97f9ffc45
Size

144KB
MD5

0684b5d1182f00abe7a9e47c48529070
SHA1

5b2e562b342581fcac198858d7cbf4f4e22360cf
SHA256

b67f3c6d026190a694ae6c650b7889491ad77515dbd2b1671e5c6cd97f9ffc45
SHA512

16fa0a960456d963a5f47859e945ff1d9b0dc263d87c922a37aaecda7334eb421caee5c168b0dd4d56f98fd7c795b203faa3efcce13ac696253fc926c9b7c946
SSDEEP

3072:/HO6j7aVFJsT+uep5lRO4OFkPMQoSBb5GqNvvsYLrQ:/9aVFmTalRdw+NvK

Score

N/A

Malware Config

Signatures

Files

b67f3c6d026190a694ae6c650b7889491ad77515dbd2b1671e5c6cd97f9ffc45
.exe windows x86

814fce58867c2cba4caaa6e045a4c000

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mspdb60

PDBOpenTpi
PDBQuerySignature
PDBQueryAge
PDBExportValidateInterface
PDBOpen
?fCreate@WidenTi@@SAHAAPAU1@IH@Z
TypesQueryTiMinEx
TypesQueryTiMacEx
TypesQueryPbCVRecordForTiEx
TypesClose
PDBClose

msvcrt

realloc
_chsize
calloc
_close
_stat
_sopen
free
_read
_lseek
_write
malloc
memmove
fprintf
exit
_setmode
_strdup
_except_handler3
_strcmpi
toupper
printf
_makepath
_iob
puts
sprintf
qsort
strncmp
memcmp
fflush
_mbsicmp
_mbsnbcpy
_mbsnbicmp
_exit
_XcptFilter
__p___initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
__p__pgmptr
_splitpath

kernel32

GetModuleHandleA
LoadLibraryA
CreateFileMappingA
MapViewOfFileEx
UnmapViewOfFile
SetFilePointer
SetEndOfFile
CloseHandle
CreateFileA
GetProcAddress
GetFileSize

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE