650fbd584bab2869757673535a42dca7ea7969510318b28c5132d359645e9473 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

650fbd584bab2869757673535a42dca7ea7969510318b28c5132d359645e9473
Size

60KB
MD5

497f02f91b03794de8b7fd126c8555c0
SHA1

0a48d80f1e7da3a03cc4f43ebfee6d5034300f87
SHA256

650fbd584bab2869757673535a42dca7ea7969510318b28c5132d359645e9473
SHA512

e1fc4d092465e41025f35c0bc9fe2647bbb52afd051d4a0e91ef75ca079a6b0831f52b9fa79f975333a02130bc059462151a168925c380fa5819279b457f09fb
SSDEEP

1536:ZoQB+MgiGPTZUkCDKZotZAOxtevQl0nwgW5jCk9LXeyY:2PT6GZot/xEQl0wgWx9m

Score

N/A

Malware Config

Signatures

Files

650fbd584bab2869757673535a42dca7ea7969510318b28c5132d359645e9473
.dll windows x86

153027ec3b10bcea606b777657dd3402

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
TerminateProcess
OpenProcess
LoadLibraryA
CloseHandle
GetProcAddress
FreeLibrary
GlobalFree
lstrcpyA
DisableThreadLibraryCalls

msvcrt

strcmp
_strupr
toupper
strlen
free
_initterm
malloc
_adjust_fdiv
strcpy
_itoa

Exports

Exports

KillProc

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE