bf241decfddfbba818cfc32c0e0ff5a073550c6713fe120656be54b1603c4162 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf241decfddfbba818cfc32c0e0ff5a073550c6713fe120656be54b1603c4162
Size

288KB
MD5

358cc91a1b730a85965ece8c3e3b0211
SHA1

ed626036707c74aa1d3b59728a867b4b5e402113
SHA256

bf241decfddfbba818cfc32c0e0ff5a073550c6713fe120656be54b1603c4162
SHA512

cf46f4867b330bc74fdb816b1c705f2c36c97e98840e3d48131747c7a1fde9f341beb57a0cc85dc194cee40767b29a01d6fbfa4d1fe82aae01f48d22ce11b065
SSDEEP

6144:wjKc89HOV15GobmBPea30s7vfXK2jKc89HOV15GobmBPea30s7:w+dx4d6D7XP+dx4d6D

Score

N/A

Malware Config

Signatures

Files

bf241decfddfbba818cfc32c0e0ff5a073550c6713fe120656be54b1603c4162
.dll windows x86

0f44bf2b3b0b8d5ecae5689ff1d0e90d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTickCount
lstrcpyA
lstrcatA
lstrlenA
GetTempPathA
SetErrorMode

user32

wsprintfA

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ