5166ab90ce932dd386b4ba841663ee65c7f8bfce5f2693eb8de79a58c900dd22 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5166ab90ce932dd386b4ba841663ee65c7f8bfce5f2693eb8de79a58c900dd22
Size

15KB
MD5

0f02dea850967524c5e831eb439daf26
SHA1

d5e4243482d5e97e6db63f9cd05c7bee5aab75d5
SHA256

5166ab90ce932dd386b4ba841663ee65c7f8bfce5f2693eb8de79a58c900dd22
SHA512

2caa553bd66cd59b8c4d407798afb96a76957f8d46c73297660198503dfef2aef4afb5a3384903a64dd7bf7bc40ac4c7747f62ab6bb89d5c2e5e6795a7487964
SSDEEP

192:lGO4fmrccWjYq23uSeLjXau6Zl79ouMrR78bB1zdWVHdLyhjWRBTrW/dNzgoXsQx:amw2VovRizfW7TrW/d9gcsQfe2o1m

Score

N/A

Malware Config

Signatures

Files

5166ab90ce932dd386b4ba841663ee65c7f8bfce5f2693eb8de79a58c900dd22
.dll windows x86

1db2f2bab3b3fad92f24c5ec540a3ba0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetCommandLineW
FreeResource
lstrlenA
HeapFree
GetTickCount
GetProcessHeap
GetCommandLineA
SizeofResource
CreateProcessA
lstrcatA
GetEnvironmentVariableA
GetShortPathNameA
LockResource
CancelIo
VirtualProtect
lstrcpyA

Sections

.text
Size: 1024B - Virtual size: 946B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 94B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ