28e3a2693d39f5da4e1eb31bea4cdbff454f74edd59a95953db4f102ce194ab1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28e3a2693d39f5da4e1eb31bea4cdbff454f74edd59a95953db4f102ce194ab1
Size

202KB
MD5

936dad1c61ccc91000cf9e42d4ccf639
SHA1

408546601a4355a755ce3378be5418cf1b742428
SHA256

28e3a2693d39f5da4e1eb31bea4cdbff454f74edd59a95953db4f102ce194ab1
SHA512

b4b09264ca18af6f6843c389affd2a9371448bfc6a28ff6e56ea687ed6c2828ac85a1cdf31d32dacdd33c7dd87d7cd3e59a1cdd55eb3106ca9d5c7932be9676b
SSDEEP

3072:aGCbuRZs+ibGIgewaDe71a0tddjju7rAMoeNN1hQS9826nT:JCc+Ql5vu7kwTv9sn

Score

N/A

Malware Config

Signatures

Files

28e3a2693d39f5da4e1eb31bea4cdbff454f74edd59a95953db4f102ce194ab1
.exe windows x86

d5144895c6ad240e76a2999fd3d6cf0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
GetSystemMetrics
GetDesktopWindow
GetDC

kernel32

GetDriveTypeA
QueryPerformanceCounter
RemoveDirectoryA
GetACP
GetCommandLineA
lstrcmpA
IsDebuggerPresent
GetWindowsDirectoryA
Sleep
GetCurrentProcess
GetStartupInfoA
GetCommandLineW
MulDiv
GetThreadLocale
CopyFileA
GetCurrentThreadId
GetProcessHeap
SetCurrentDirectoryA
GetModuleHandleW
GlobalFindAtomW
LoadLibraryW
GetOEMCP
lstrcmpiW
GetUserDefaultLangID
SetLastError
lstrcmpiA
lstrlenA
GetCurrentProcessId
GetTickCount
GetLastError
DeleteFileW
lstrlenW
DeleteFileA
GetCurrentThread
GlobalFindAtomA
GetConsoleOutputCP
GetVersion
VirtualAlloc

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ