6e2da0e5c58868272113b2948c59d6da1dc1bfc01d3a2b98ef1faa5e33dc9fca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6e2da0e5c58868272113b2948c59d6da1dc1bfc01d3a2b98ef1faa5e33dc9fca
Size

121KB
MD5

08d1f75a15dcd611e0ff898cfb9a452a
SHA1

8d89db9835a9bffa394fe7185904a65295751dc1
SHA256

6e2da0e5c58868272113b2948c59d6da1dc1bfc01d3a2b98ef1faa5e33dc9fca
SHA512

2082e37e36433819b39c0470f7e656b4b1ac0ac0dd4e9b6b179b923b1ed1009e66a276bc51710ac87afc0294e7987b3dcc7ea264e8de0ba304e2bcb06be9fa22
SSDEEP

3072:q/hd1vvRkj+6smoJcVUZfKscylungw7k:q/hdFqoJWUZSwlm7

Score

N/A

Malware Config

Signatures

Files

6e2da0e5c58868272113b2948c59d6da1dc1bfc01d3a2b98ef1faa5e33dc9fca
.exe windows x86

3aab700694661f7bd26fc1a3b853031e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesW
IsValidCodePage
GetFileType
GetModuleHandleW
GetVersionExA
GetDriveTypeA
GetStartupInfoA
lstrcpyA
GetThreadLocale
GetEnvironmentStringsW
VirtualProtect
GetTempFileNameA
CreateProcessA
GetProcAddress

msvcrt

__p__commode
_XcptFilter
__p__fmode
__getmainargs
_exit
__set_app_type
__p___initenv
free
_controlfp
_initterm
_adjust_fdiv
atan2
_except_handler3
calloc

Sections

.text
Size: 1024B - Virtual size: 562B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 814B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ