e9dcf451fdc8fb9d203c515c50b62f8855c60726dbb0713b351947d4250cbe80 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e9dcf451fdc8fb9d203c515c50b62f8855c60726dbb0713b351947d4250cbe80
Size

249KB
MD5

8094ab0722bea82da9244edc397a6a80
SHA1

61aa3f97881d001716a814c4a71001a9d439338f
SHA256

e9dcf451fdc8fb9d203c515c50b62f8855c60726dbb0713b351947d4250cbe80
SHA512

a979d332a622045286494c047f26e55c3a59f08f8982702bd2231e083cf3c2a5d6aa5d5ebfc442336dcd8587c7e4a3af877b7233dfa033c9dc70d09ca753deee
SSDEEP

3072:+cWmJLepFW0Yo0KekGT4lDki3892k8WdRJTAeJTA1x:+Y0zW7o0N689

Score

N/A

Malware Config

Signatures

Files

e9dcf451fdc8fb9d203c515c50b62f8855c60726dbb0713b351947d4250cbe80
.exe windows x86

f85d1a218310e130919d9523fc42485f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc

user32

GetSystemMetrics
LoadCursorA
LoadIconW
TranslateMessage
SetTimer
MsgWaitForMultipleObjects
DispatchMessageW
PeekMessageW
DefWindowProcW
MessageBoxW
FindWindowExW
RegisterClassW
CreateWindowExW
DestroyWindow
KillTimer
SetProcessWindowStation
OpenWindowStationW
GetProcessWindowStation
CloseWindowStation
CloseDesktop
GetUserObjectInformationW
OpenDesktopW
OpenInputDesktop
SetThreadDesktop
GetThreadDesktop
PostMessageW
GetWindowThreadProcessId
EnumWindows
PostThreadMessageW
RegisterWindowMessageW
LoadStringW

advapi32

RegQueryValueExW
RegOpenKeyExA

Sections

.text
Size: 206KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ