a9b35913b47b524841f78fee76ae1161cd71b2b0052f2120258dedca07120562 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a9b35913b47b524841f78fee76ae1161cd71b2b0052f2120258dedca07120562
Size

106KB
MD5

4096d4efedf735cd2b0837afb56768c0
SHA1

b9e8209969a0e0f0c1a036764ab4874aab96b77b
SHA256

a9b35913b47b524841f78fee76ae1161cd71b2b0052f2120258dedca07120562
SHA512

4ff4b39500cd4f1ac011d0582ea3e9443c5fe7f8ae756dbe02c9a6f4269fb508530f771af6635c09ad35c35a8a144b5c95ce88e9385ef33eed7dbeceab862e1b
SSDEEP

1536:GRCantHMRAXk7IsSLkvOxyEutaXHy85DPPEvhSHvNYapoLXlv:gZ6PIsSwvOIoXy85rE5SHFYaeLVv

Score

N/A

Malware Config

Signatures

Files

a9b35913b47b524841f78fee76ae1161cd71b2b0052f2120258dedca07120562
.exe windows x86

f774533c2af139aa67a887962363f747

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

nutlibc4

malloc
fflush
fclose
toupper
__p__pctype
mblen
__p___mb_cur_max
fopen
strrchr
sprintf
exit
fprintf
_iob
setlocale
fputs
atoi
strncmp
sscanf
fgets
mbtowc
unlink
calloc
___NutSysStartup
___NutLibcPreMain
___NutGetModuleHandle
___NutFinishInitialisation
___NutAtExitStaticCDone
___NutInitTerm
___NutAtExitInitBlock
___NutIsForkingChild
___NutAtExitRunBlock
___NutUnregisterModule
___NutProcDetachValidate
___NutPrepareOptionBlock
___NutValidateDllLoadAddress
___NutRegisterModule
___NutMarkDllMain
_except_handler3
___NutAtExitRegister

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE