4cda026c9b9a8818e8a8df5f3c59474f0f35f7ee83ad9794563f0df002b35503 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4cda026c9b9a8818e8a8df5f3c59474f0f35f7ee83ad9794563f0df002b35503
Size

122KB
MD5

13db24671bcb28ce40df1c0c47c70db2
SHA1

0a8af30914b853dbce6fe1fa7a8893fbf9617e0b
SHA256

4cda026c9b9a8818e8a8df5f3c59474f0f35f7ee83ad9794563f0df002b35503
SHA512

b66db6545d40f6d67cee58b0875d807a5bb69c4b6364b0862f4cf388715940de129dab8f985ed125dd5a9265c562002fe58b2558962f5d4c0f81a2e1e490156b
SSDEEP

3072:LXTcwqj4UpfkW8Pd/hgRwWNz0xZnpvGFCz/VUNbqheT:LXQwv2kt1owsz0xZ9GFK/VUNue

Score

N/A

Malware Config

Signatures

Files

4cda026c9b9a8818e8a8df5f3c59474f0f35f7ee83ad9794563f0df002b35503
.exe windows x86

ccbf5cf0fa5ef9d312f370e3d574d03a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__setusermatherr
calloc
__p__fmode
_initterm
__getmainargs
free
_exit
_XcptFilter
_adjust_fdiv
__p___initenv
_except_handler3
__set_app_type
__p__commode
_controlfp

kernel32

GetCPInfo
FileTimeToLocalFileTime
GetProcessHeap
GetConsoleMode
lstrcpynA
GetConsoleOutputCP
GetCommandLineW
ExpandEnvironmentStringsA
GetPrivateProfileStringA
GetStdHandle
GetSystemInfo
WaitForSingleObject
GetModuleHandleA
InterlockedDecrement
lstrlenA
WriteConsoleA
GetProcAddress
GetCurrentProcess
GetModuleHandleW
InterlockedCompareExchange
GetLastError
VirtualProtectEx
GetFullPathNameA
GlobalUnlock

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 26KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 86KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE