237139f58f8b7fbaca3b85ae3976c2ade0af6069e9e063b7550ebadf349b65bc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

237139f58f8b7fbaca3b85ae3976c2ade0af6069e9e063b7550ebadf349b65bc
Size

200KB
MD5

813139563e302c975bcc81e24707d0e2
SHA1

a568bbd83e62177670050e3f1c472f3a5f642610
SHA256

237139f58f8b7fbaca3b85ae3976c2ade0af6069e9e063b7550ebadf349b65bc
SHA512

3053a2905a7ed78f5a40e33cce277eda8ecb314bde4d2ade69c838f18be51a4370dfaa4173c9704d7decd8f6addbd71218b78ac19033c3e674dcaff241c85d28
SSDEEP

3072:5RelVX3LcUHugFHcfzjfcB3D4xFx/ntGWwHBxU9:wLcUHozjfXxf/wHG

Score

N/A

Malware Config

Signatures

Files

237139f58f8b7fbaca3b85ae3976c2ade0af6069e9e063b7550ebadf349b65bc
.exe windows x86

c8b81c6536cb93127600b60e367a5d81

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
lstrlenW
GetWindowsDirectoryA
GetCurrentProcessId
QueryPerformanceCounter
GetCurrentThread
GlobalFindAtomW
lstrcmpiA
GetUserDefaultLangID
SetLastError
GetCommandLineW
GetCurrentProcess
GetModuleHandleA
lstrcmpA
GetCurrentThreadId
Sleep
GetACP
GetStartupInfoA
GetConsoleOutputCP
VirtualAlloc
LoadLibraryW
lstrlenA
lstrcmpiW
IsDebuggerPresent
GetProcessHeap
CopyFileA
GetCommandLineA
GetThreadLocale
DeleteFileW
GetVersion
GetLastError
SetCurrentDirectoryA
GetTickCount
DeleteFileA
GetOEMCP
GetModuleHandleW
MulDiv
RemoveDirectoryA
GlobalFindAtomA

user32

GetSystemMetrics
CharNextA
GetDesktopWindow
GetDC

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ