5399ceae8f8ac8ef2ca956352342b1d6e05dfbc9f3a7961e9f49919ea853e17a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5399ceae8f8ac8ef2ca956352342b1d6e05dfbc9f3a7961e9f49919ea853e17a
Size

884KB
MD5

1041c7f74c3602e156f082a7c9c27686
SHA1

8938fb8ca9f8931128a970799dd7402cf81d2d33
SHA256

5399ceae8f8ac8ef2ca956352342b1d6e05dfbc9f3a7961e9f49919ea853e17a
SHA512

ffabbe1a769a587c797fb0bc570c99079e9cba0a9f732fd930ebe538e357dbe4ec1f80a0e7f3351274efc93cf1198d38e7307b4351542f4b1ce7b4967ccba140
SSDEEP

24576:KYqlxOcWWJ9mgsO5FjQGmlb+JQcfFMtb:Kac35zSzYfOb

Score

N/A

Malware Config

Signatures

Files

5399ceae8f8ac8ef2ca956352342b1d6e05dfbc9f3a7961e9f49919ea853e17a
.exe windows x86

460a2958e5d8c358f6ecc69c8f9a8954

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetFileAttributesW
GetGeoInfoW
GetModuleHandleW
VirtualProtectEx
OpenEventW
GetModuleHandleA
GetGeoInfoW
ResetEvent
Heap32Next
CreateMutexA
lstrcatA
GetGeoInfoW
GetCurrentProcessId
GetGeoInfoW
GetCalendarInfoA

wmvcore

WMCreateWriter
WMCreateReader
WMIsContentProtected
WMCreateEditor

Sections

.text
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.DATA
Size: 869KB - Virtual size: 2.2MB

IMAGE_SCN_MEM_READ