014a7e38afab15a152ccf1a3b63d468d320c0390cb31615eb23e5066bc10dde3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

014a7e38afab15a152ccf1a3b63d468d320c0390cb31615eb23e5066bc10dde3
Size

103KB
MD5

827e4845e77d3816b44c2a0a4f0e7dcc
SHA1

31ff497442f301206fbe7124a9552b88eb8d76ca
SHA256

014a7e38afab15a152ccf1a3b63d468d320c0390cb31615eb23e5066bc10dde3
SHA512

cdac01890d09dd03d876002f5eed2df9b1af8aa63a1d2579fa20814a11c6ef206cea3f52e0396ae12493d7f1a99411ab942a5a73fb8632fc45368dd552d3ed41
SSDEEP

1536:/2MRQeYL5CvekVTl/d0CBfuQHns2CGZHLD3dWQoNJh:/8eYEv5BP06uQHBC+33oQ

Score

N/A

Malware Config

Signatures

Files

014a7e38afab15a152ccf1a3b63d468d320c0390cb31615eb23e5066bc10dde3
.exe windows x86

536c6816285b8380a74c847fa2d6ac01

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
LoadLibraryW
SetFileTime
WriteConsoleA
GetTempPathA
GetModuleHandleA
GetDiskFreeSpaceA
GetCommandLineW
GetVersionExW
GlobalUnlock
CopyFileA
ExitProcess
lstrlenW
GetCurrentProcessId
VirtualProtect
GetCurrentThread
UnhandledExceptionFilter
lstrcpynA
VirtualFree
FileTimeToSystemTime
GetWindowsDirectoryA
LoadResource
GetACP
GlobalHandle
FreeEnvironmentStringsW
IsBadWritePtr
GetTempPathW
DeleteFileA
DeviceIoControl
GetConsoleOutputCP
lstrcatA
GetThreadLocale
InterlockedIncrement
GetUserDefaultLangID
GetExitCodeProcess
GetSystemDirectoryW
VirtualQuery
GetCurrentProcess
RaiseException
GlobalFree

msvcrt

_XcptFilter
__set_app_type
__p___initenv
_except_handler3
__p__commode
__p__fmode
_adjust_fdiv
_initterm
_exit
__getmainargs
_controlfp

Sections

.text
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ