229d2e53b90b91d85cc3820b28b439ea5e75a2478c06beec026b464903c22d92 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

229d2e53b90b91d85cc3820b28b439ea5e75a2478c06beec026b464903c22d92
Size

501KB
MD5

a086f5dcc1ff430bc8cd64859fdf4840
SHA1

daa9a90b72312ad747f36290e2283122136eea43
SHA256

229d2e53b90b91d85cc3820b28b439ea5e75a2478c06beec026b464903c22d92
SHA512

f6b9eeecc55e4b9cc8a16a98d985cc10cfd1799de47e1d69c354a9c754543634f9b04ad0000701ba3dc32c8ff8538b58653e5368f43df8f9d3c0b1d77236c0b3
SSDEEP

6144:jzU88tebE6/wguJpVopIM/eiG3cE9bAxsfW7qz1jC84PXJcKK8dz5CnezFOHP9DJ:jzv8wojJ7oaz33O6euNC8+Zwp5k6

Score

N/A

Malware Config

Signatures

Files

229d2e53b90b91d85cc3820b28b439ea5e75a2478c06beec026b464903c22d92
.exe windows x86

98db08e2c0c65bc4b5770b436128566f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidUILanguage
FindVolumeClose
GetPrivateProfileSectionA
WritePrivateProfileSectionW
InterlockedIncrement
SearchPathA
CreateActCtxW
GetCurrentProcess
GlobalLock
FindVolumeClose
GetConsoleNlsMode

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE