4868e37baf32454e17af40d2a77c010696aa8c164aeae8e8358b37b0ba0334ff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4868e37baf32454e17af40d2a77c010696aa8c164aeae8e8358b37b0ba0334ff
Size

813KB
MD5

811f9fb6591ed365dcc46fd0ec0abc21
SHA1

5149fd8970ed60281856724ab0da5e256a56bdcd
SHA256

4868e37baf32454e17af40d2a77c010696aa8c164aeae8e8358b37b0ba0334ff
SHA512

adb068c7a179e14e891452d15a9dbc0167526961611133c5fb399d59e99e32b8a0dec904c230419736414c542aab97152f816201f008732baa67d8f5aaa539ea
SSDEEP

12288:etabRUh8dsw5MDMx0RhuBZV2HKq5TKo0g3N575eRngPyL6Ub1AlZFetij:e4tUhEu60R07sRKol3H5lf8Wl7Wi

Score

N/A

Malware Config

Signatures

Files

4868e37baf32454e17af40d2a77c010696aa8c164aeae8e8358b37b0ba0334ff
.exe windows x86

db72cb6b93d70f74f5ef942b6532e042

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetEndOfFile
VirtualProtectEx
GetFileAttributesA
SetEndOfFile
SetEndOfFile
CreateEventA
GetStdHandle
GetTickCount
LoadLibraryA
OpenMutexW
SetEndOfFile
GetStringTypeW
GetModuleFileNameA
lstrcpyW
SetEndOfFile
SetCurrentDirectoryW

winhttp

WinHttpOpen
DllGetClassObject
WinHttpConnect
DllCanUnloadNow

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.data
Size: 803KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE