227be3bacfe24ace225e2431930423bb353bfff45f24160bd97f079659e3939f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

227be3bacfe24ace225e2431930423bb353bfff45f24160bd97f079659e3939f
Size

93KB
MD5

06036f0ac9d34dea8e3085ad638a0c38
SHA1

a51b8e7f977ac7f0de28daa1fe12aa6ad1e371e2
SHA256

227be3bacfe24ace225e2431930423bb353bfff45f24160bd97f079659e3939f
SHA512

2fccd1284e23f28cd0d396ea16a2e9a9625ec6c64976f0bef2bfb17ce8eb484c27b9481543cf0f3e992ca686e9964b6abce6f274da36bef4d6da9522ac463a58
SSDEEP

1536:1IH8Jk9oWHI8+MoIMJxv9SmYsK+7Sx99OaIEjz7sBQjj80kv3CUMN:1u8jNMoIcAnOaIakGj80/

Score

N/A

Malware Config

Signatures

Files

227be3bacfe24ace225e2431930423bb353bfff45f24160bd97f079659e3939f
.exe windows x86

2bf6e27a0dec909b240b80bb70dd2796

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeProcess
WaitForMultipleObjects
lstrcmpA
DeleteFileA
lstrcpyA
GetFileType
LoadLibraryW
IsBadCodePtr
GetCurrentProcess
GetStartupInfoW
GetStringTypeW
GetVersion
IsDBCSLeadByte
DeleteFileW
GetTempPathW
GetWindowsDirectoryA
InterlockedDecrement
RemoveDirectoryA
lstrcmpiA
GetThreadLocale
GetCPInfo
LoadResource
GetCommandLineW
SetFilePointer
DuplicateHandle
FileTimeToSystemTime
InterlockedIncrement
RaiseException
GetTempPathA
SetThreadLocale
GetModuleHandleA
GetFileAttributesA
VirtualProtect
VirtualQuery
GetVersionExA

msvcrt

__getmainargs
__p__commode
_XcptFilter
__set_app_type
_exit
_except_handler3
__p___initenv
_adjust_fdiv
_controlfp
_initterm
__p__fmode

Sections

.text
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ