c50f2dac8a3f4f74fd3433e06ea6baebccb0806fcfa943bdca6a3c05d0ef1c15 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c50f2dac8a3f4f74fd3433e06ea6baebccb0806fcfa943bdca6a3c05d0ef1c15
Size

26KB
MD5

913892180d12a33d31e399f2fe036c79
SHA1

350b7314d5b1389148528ad04c89deed8a1847db
SHA256

c50f2dac8a3f4f74fd3433e06ea6baebccb0806fcfa943bdca6a3c05d0ef1c15
SHA512

60002292334088d1ff42ede52286fa081b09c9d60119af572660069a4cdb7d43b21a61b7cc55a4571157d401828ded7a43e9d1d4f679340b53205d875f60f12b
SSDEEP

384:bzgJEtfurZm1jviU6MIEdnWV9sy7VEscQ61CYTq5Tj9PzdLyZ:bzjuIDiU6MVdnWoGEsPYuJpzdmZ

Score

N/A

Malware Config

Signatures

Files

c50f2dac8a3f4f74fd3433e06ea6baebccb0806fcfa943bdca6a3c05d0ef1c15
.exe windows x86

6ba8540be941e5afd56adb472f2f93b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleFileNameW
GetFullPathNameW
TlsFree
VirtualFree
SetCurrentDirectoryW
UnmapViewOfFile
GetStringTypeA
FormatMessageA
TlsGetValue
lstrcpynA
lstrlenA
GetPrivateProfileIntA
GetModuleHandleA
GetNumberFormatW
CreateEventW
GetLocaleInfoW
VirtualProtect
GetCurrentThread
DeleteFileW

wmadmod

DllUnregisterServer
DllGetClassObject
DllCanUnloadNow
DllRegisterServer

Sections

.text
Size: 13KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.pdata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE