4039ee7844ad06063c03ad8bf8b9102d3b9c307da6acff87897de2f3f708f504 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4039ee7844ad06063c03ad8bf8b9102d3b9c307da6acff87897de2f3f708f504
Size

46KB
MD5

9c39ec78dc5a217b82956f78903c5882
SHA1

58a07551755738f7520664dff4adb99398b9edb1
SHA256

4039ee7844ad06063c03ad8bf8b9102d3b9c307da6acff87897de2f3f708f504
SHA512

18f68c3e372ee234bc4a365792291cc17777be386650fdb3f2f607cc76b09bc49ac4aad2c00f9ff16fc2cb470ab2b94c07879403b852a5c766e3323c5e695b5c
SSDEEP

768:p0atVYhJ53fgRmi0nAioIgY+MpjiSoXbmuA:pRsz3fg7ep+MpWSormu

Score

N/A

Malware Config

Signatures

Files

4039ee7844ad06063c03ad8bf8b9102d3b9c307da6acff87897de2f3f708f504
.exe windows x86

0f20f1f92c2b1d26eed6d70875c1b0ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

netapi32

NetGetDCName
NetUserSetInfo
NetApiBufferFree

kernel32

GetACP
GetCPInfo
CloseHandle
SetStdHandle
GetLastError
MultiByteToWideChar
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
FlushFileBuffers
SetFilePointer
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
HeapAlloc
HeapFree
VirtualAlloc
GetProcAddress
LoadLibraryA

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 943B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE