9fa508ea0c14a32016bd0d6f1fe58f470cb66744c5dfdbfda5b43546db3f65d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9fa508ea0c14a32016bd0d6f1fe58f470cb66744c5dfdbfda5b43546db3f65d0
Size

28KB
MD5

05bb65e2853c17d1ee0517350549a409
SHA1

14a4fef7d67b0de7cfe2160659a474cd1dd8ea41
SHA256

9fa508ea0c14a32016bd0d6f1fe58f470cb66744c5dfdbfda5b43546db3f65d0
SHA512

2be0b15410b8e8f85b576cc92262cbc32a2d7c44ea20d26ad01277200d564ca7eb3eec7c87ef0a3bb74ee83136828e5b3e2c4e8aca3300971ce6a7520a0467f7
SSDEEP

192:0NYCDt76HY1Ora3w2dmNHAHQ9PXer2fq3k9OKb0A0cO30NYCDt76HY1Ora3w2:ktV1OraOHxfer2y0U6TkktV1Ora

Score

N/A

Malware Config

Signatures

Files

9fa508ea0c14a32016bd0d6f1fe58f470cb66744c5dfdbfda5b43546db3f65d0
.exe windows x86

424435882adbd9c656693d58cac0b174

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

kernel32

GetCommandLineA
GetEnvironmentVariableA
GetModuleFileNameA
GetModuleHandleA
CloseHandle
GetShortPathNameA
GetStartupInfoA
GetWindowsDirectoryA
CopyFileA
CreateFileA
RtlUnwind
CreateProcessA
WriteFile
lstrcatA
lstrcpyA

advapi32

RegDeleteValueA
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA

crtdll

__GetMainArgs
_strcmpi
exit
free
malloc
raise
realloc
signal
strcat
strchr
strcpy
strlen
strncat
strncpy
strstr
time

Sections

Size: 24KB - Virtual size: 24KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE