bc2ae5209d8b59ad5f6844cd8199971d3397f03f31cbcf2d9396713db8028c90 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc2ae5209d8b59ad5f6844cd8199971d3397f03f31cbcf2d9396713db8028c90
Size

75KB
MD5

20dab23e84d8b963aa6bd8646e2f8b3e
SHA1

85bf47914f0f0546e488b41feb89da80d84faed6
SHA256

bc2ae5209d8b59ad5f6844cd8199971d3397f03f31cbcf2d9396713db8028c90
SHA512

6b7ed37a97ef406c567aed2f955b5dbde22d96b8169fc9de00effab8b17ccda11ff5084ee946fcdb88b6753064dd145f7163ad4ea9f5276e9bccbb46087ca75d
SSDEEP

1536:JL0aOdryLgPl483njYjmW6G46yHMWC00y8sxXPmjkqhPgR:J4aOc0dZjYjmWTWvlxXPmXA

Score

N/A

Malware Config

Signatures

Files

bc2ae5209d8b59ad5f6844cd8199971d3397f03f31cbcf2d9396713db8028c90
.exe windows x86

798cbc5db0896189b8e46a1dd682d102

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
DuplicateHandle
DeleteFileA
GetLastError
GlobalLock
FileTimeToLocalFileTime
GetTempPathA
SetFilePointer
LoadResource
FreeEnvironmentStringsA
InterlockedExchange
GetCurrentThread
RtlMoveMemory
SystemTimeToFileTime
lstrlenW
LocalAlloc
lstrcpynA
GetModuleFileNameA
GetCurrentDirectoryA
TerminateProcess
InterlockedIncrement
GetSystemDefaultLCID
GetFileTime
WaitForMultipleObjects
VirtualProtect
MultiByteToWideChar
GetModuleHandleA
GetExitCodeProcess
GetThreadLocale
VirtualFree
InterlockedDecrement
EnumCalendarInfoA
SizeofResource

msvcrt

__p__commode
_exit
_initterm
__p___initenv
_except_handler3
_controlfp
_adjust_fdiv
_XcptFilter
__set_app_type
__getmainargs
__p__fmode

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ