48f565fac954f63dffa1c72e9fe7ce3a807d9d5e3284bea79bbbfc5e47883b32 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

48f565fac954f63dffa1c72e9fe7ce3a807d9d5e3284bea79bbbfc5e47883b32
Size

810KB
MD5

2c839ae4eac69ca19e73096df5cbefc0
SHA1

af4ebcf8405a725284bb20d9d0f5bdc20762c3e0
SHA256

48f565fac954f63dffa1c72e9fe7ce3a807d9d5e3284bea79bbbfc5e47883b32
SHA512

d2dfc4757fd6a81877b0ba4a7f8df51d98734bb622747ae43a732e8a324410206edc9454861a01dbfa20cc9d9ed73efcc9c84eeeeed4a101d8885f97ee6c1659
SSDEEP

24576:9dielNDicgpRd/0QQVibpckz+jakOBk0/TiaNb:9celRqpQOtXk0WaN

Score

N/A

Malware Config

Signatures

Files

48f565fac954f63dffa1c72e9fe7ce3a807d9d5e3284bea79bbbfc5e47883b32
.exe windows x86

f75d39ebb6d0a10162eb23a9c002b05c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileW
GetModuleHandleA
SetLastError
SetLastError
GetLogicalDriveStringsW
SetCurrentDirectoryA
lstrcpyA
VirtualProtectEx
GetFullPathNameW
SetLastError
SetLastError
CreateSemaphoreW
OpenMutexA
GetTickCount
SetLastError
SetLastError

riched20

IID_IRichEditOle
IID_ITextHost
RichEditANSIWndProc
RichEdit10ANSIWndProc

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.ndata
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ