58972cd421520bdf33507437e79aca420eeea852aeefb2850e9815b10c409f5f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

58972cd421520bdf33507437e79aca420eeea852aeefb2850e9815b10c409f5f
Size

64KB
MD5

90de5644642af16039db570c9558de4d
SHA1

428329dbe9c593128adf0ce13b632a293b707523
SHA256

58972cd421520bdf33507437e79aca420eeea852aeefb2850e9815b10c409f5f
SHA512

2b57ca30307e35e2cc30481cdcc2595d9c1f6b163e6239335b5e57ac310fdf6e54778309e18a7e911be113b4ceb022569dce5f366c37ccba073f70967eee46a7
SSDEEP

1536:pN831pdofSY+A37feaCMJDmYsLIb4PvYqHB/AdGW:paNofSDADeak7dJHB/AdGW

Score

N/A

Malware Config

Signatures

Files

58972cd421520bdf33507437e79aca420eeea852aeefb2850e9815b10c409f5f
.exe windows x86

cbc82ad8f8cb3e0fbce5263c1ccb4b65

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
GetModuleFileNameA
OpenMutexA
GetPrivateProfileStringA
lstrcpyA
SetHandleCount
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WinExec
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

advapi32

RegOpenKeyExA

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wtq
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE