0cfd3bf759bc9dd4ab00a53092024328980ee90c02d545f91ce183982ebbbd50 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0cfd3bf759bc9dd4ab00a53092024328980ee90c02d545f91ce183982ebbbd50
Size

129KB
MD5

0d079e4afca82d5b81c3c71237168a1f
SHA1

607d4ca0bae9ebf7d32de87a4a6a0a276b6279c7
SHA256

0cfd3bf759bc9dd4ab00a53092024328980ee90c02d545f91ce183982ebbbd50
SHA512

1ed349283b0455d684c64f338c1c2fa5556d2099879d38c41e673efe9a8decaa90c7286b94649380b9fd74fe2f85d1b3c5db560aae0c1bc7983009095e0d8d14
SSDEEP

3072:HefV5ngh+joE/6bthbA7XYhSV1d8PFEUH5UV9haE:iV2QDCWXY816RZYjT

Score

N/A

Malware Config

Signatures

Files

0cfd3bf759bc9dd4ab00a53092024328980ee90c02d545f91ce183982ebbbd50
.exe windows x86

430855654b3a3083a9e8326aa5932969

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalReAlloc
InterlockedDecrement
IsBadReadPtr
CreateProcessA
MulDiv
RaiseException
GetProcessHeap
GetModuleHandleW
MultiByteToWideChar
SetUnhandledExceptionFilter
GetShortPathNameA
GetStringTypeW
ExitProcess
VirtualProtectEx

msvcrt

_XcptFilter
_exit
__p__fmode
__p__commode
__p___initenv
calloc
_initterm
__setusermatherr
_controlfp
_except_handler3
free
atan2
_adjust_fdiv
__set_app_type

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ