020480b1e46386eff93d953e96e615ef2b014287eb00c68ee364b22e66eae67b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

020480b1e46386eff93d953e96e615ef2b014287eb00c68ee364b22e66eae67b
Size

160KB
MD5

145dac0f411bbd8c400b4931efc9fec2
SHA1

8c0ada93c427e303a4c99631c6c012dcecd98f7e
SHA256

020480b1e46386eff93d953e96e615ef2b014287eb00c68ee364b22e66eae67b
SHA512

88a6bb9ef20bc05fd30aa24746cefeae64bf01e7443bb6676f3ebcffd13d0f1d639650f178b27f4c606bbc35901afd51b89c924b0308c0737e3d6f89219d4617
SSDEEP

3072:W2Bp564wvJ1MgQVMQ5LdGGzS4QHvwSOqdnua52UHoS+Jkt15:hVR61MgQVMtGyHoGwE2o

Score

N/A

Malware Config

Signatures

Files

020480b1e46386eff93d953e96e615ef2b014287eb00c68ee364b22e66eae67b
.exe windows x86

b848af49b8e8896ef4ccaba005ac3ec9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
LoadLibraryA
CreateFileA
ExitProcess
GetCurrentProcess
CloseHandle
LCMapStringA

user32

CloseWindow
CharLowerBuffA
wsprintfA
SetWindowLongA
CreateWindowExA

advapi32

RegEnumKeyA
RegCreateKeyA
RegEnumValueA
RegDeleteKeyA
RegQueryValueA
RegOpenKeyA
RegSetValueA
RegCloseKey
RegDeleteValueA

Sections

.text
Size: 140KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ