d33d369ae6ec97763fe20f92a089023c7691e0587e6e2dc1214eff53a33e870a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d33d369ae6ec97763fe20f92a089023c7691e0587e6e2dc1214eff53a33e870a
Size

100KB
MD5

a2b4df572340c605943a4df551107b36
SHA1

e79a21b54edde11237a42b09b7b4f7246a6e2b00
SHA256

d33d369ae6ec97763fe20f92a089023c7691e0587e6e2dc1214eff53a33e870a
SHA512

ed62f8afe7328047a61958995108812cd5d91628acac9f4e7f9835a5a48b0f9369283ac5707b83dd51036b9fc3758ec115ac804a1e70d8b4faae1532ba921f30
SSDEEP

1536:/WVCObw2uIR+UoPMqqU+NV23S2n8VkFS+FcHmCnzuaUkYUhnQFOo0UT6Pp5iD:+VTTn1oPMqqDLy/QVzLSkYHFO5Hi

Score

N/A

Malware Config

Signatures

Files

d33d369ae6ec97763fe20f92a089023c7691e0587e6e2dc1214eff53a33e870a
.dll windows x86

2f39a0c18ccb991cf670e21b2d9a0815

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
VirtualProtect
RtlUnwind
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
HeapAlloc
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ