7ee60fddc8848d348947abd52981a8acd4cf5d997f74e7d6158c98a818caa175 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7ee60fddc8848d348947abd52981a8acd4cf5d997f74e7d6158c98a818caa175
Size

66KB
MD5

15b6b1bff7aedf01d813fc27b6ebab09
SHA1

3a1f9cd148f2cb7c75f8d741f5fc5f25ce4d74b4
SHA256

7ee60fddc8848d348947abd52981a8acd4cf5d997f74e7d6158c98a818caa175
SHA512

ad8b746bd7a43e6ccd1b6a82a88aa0753428789ba09ffb23622f3416ac411c81decf5593db07e06fee846899823e106113eb27d18af7f8f704b48628d66ecdd2
SSDEEP

1536:VfvdCB3P30DubfmMkkMuiIeFLWKlBqJxxVfBd:5vdCBEsmol9KfG1fL

Score

N/A

Malware Config

Signatures

Files

7ee60fddc8848d348947abd52981a8acd4cf5d997f74e7d6158c98a818caa175
.exe windows x86

a28745b980132249216d22c405d7f87f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteProfileStringA
OpenProcess
GlobalGetAtomNameW
NlsGetCacheUpdateCount
LocalLock
SetProcessAffinityMask
CreateDirectoryA
InterlockedPopEntrySList
Toolhelp32ReadProcessMemory
GetPrivateProfileIntW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE