d56f60b6b52a2d34d6605e07790034a97b478e06d6517e2ee85da6510e1f4812 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d56f60b6b52a2d34d6605e07790034a97b478e06d6517e2ee85da6510e1f4812
Size

291KB
MD5

53b5bc070f49b26c0fa1b336dc41eff0
SHA1

03d1af75d56af6cccfad342032e9ab9d39450f8e
SHA256

d56f60b6b52a2d34d6605e07790034a97b478e06d6517e2ee85da6510e1f4812
SHA512

28ee3b5a543302698cac1f8e9a99d92097106b96b8f84df340b4ddbf9c9615a25c28f9c3a694ec1d3b534a9d1bb4f92f0577eae2ccabd0369c29f69b0b5b2a70
SSDEEP

6144:R4FzdkLpxO6BWz/ZsKX9Zvd0KX4LP+riYPAhNNsWFV:j+lsKNZvSI6PeP0Z3

Score

N/A

Malware Config

Signatures

Files

d56f60b6b52a2d34d6605e07790034a97b478e06d6517e2ee85da6510e1f4812
.exe windows x86

d81860539e08fae1de6701d58b84f3dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
TerminateProcess
GetVersionExA
GetModuleFileNameA
GetProcAddress
VirtualAlloc
HeapReAlloc
FileTimeToDosDateTime
GetCurrencyFormatW
GetSystemTimeAsFileTime
GetCurrentProcessId
HeapAlloc
GetTickCount
GetCurrentThreadId
GetCurrentProcess
GetModuleHandleA
ResumeThread
GetComputerNameW
OpenProcess
InterlockedExchange
RtlUnwind
GetStdHandle
QueryPerformanceCounter
VirtualQuery
LoadLibraryA
CreateThread
GetWindowsDirectoryW
WideCharToMultiByte
AddAtomW
ExitProcess

shell32

SHGetSpecialFolderLocation
DragQueryPoint
SHFreeNameMappings
SHBrowseForFolderA
SHGetNewLinkInfo
SHGetFileInfoA
SheSetCurDrive
SheGetDirA
InternalExtractIconListA

Sections

.text
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ