f0754f84126d65408e533d30da2cef8d0fe625529597aedcb0a48b5ac07b4da6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f0754f84126d65408e533d30da2cef8d0fe625529597aedcb0a48b5ac07b4da6
Size

81KB
MD5

96311cb01ea5072ec6829bc8d3e80e50
SHA1

b41057e18c9bd940abffa27adfc8df009c744384
SHA256

f0754f84126d65408e533d30da2cef8d0fe625529597aedcb0a48b5ac07b4da6
SHA512

1b619ac7c35c63f71b2a64df7a65135d63b48504a80c30ac6afd36e66ad04b7cd82d46396b9e3b262a7a524dec04aa8c10e0db4401f873d8f164c0220b92c4e5
SSDEEP

1536:FpcD8/KckxFG9xLOSeuc1eB1ObPIyA+W6S1xSO9nTLWO+fbK:FpcD5cfPOx1eBx+W6oSmTLSf+

Score

N/A

Malware Config

Signatures

Files

f0754f84126d65408e533d30da2cef8d0fe625529597aedcb0a48b5ac07b4da6
.exe windows x86

bb66f46a9626688da16ba2e83b46a4b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
GetShortPathNameA
RaiseException
GetOEMCP
GetDiskFreeSpaceA
GetExitCodeProcess
InterlockedCompareExchange
VirtualProtect
CreateProcessA
GetTempPathA
lstrcatA
CopyFileA
GetCPInfo
GetModuleHandleA
GetThreadLocale
GetWindowsDirectoryA
SetFilePointer
GetTempFileNameA
CreateFileMappingA
FormatMessageA
GetModuleHandleW
LoadResource
IsBadWritePtr
GetVersionExW
DeleteFileA
SizeofResource
IsBadReadPtr

msvcrt

__set_app_type
_controlfp
_XcptFilter
_initterm
__getmainargs
_except_handler3
__p__commode
__setusermatherr
_adjust_fdiv
__p__fmode
_exit
__p___initenv

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ