c49339b4942ca5b55da6e4fc32bb29cbc111b770cf33b88a127f4738a0b788af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c49339b4942ca5b55da6e4fc32bb29cbc111b770cf33b88a127f4738a0b788af
Size

884KB
MD5

0faadb5bd32198198a5da8fa078eb4b0
SHA1

b9ad65056e6934a5052c7f2553e3a7e59bba46ac
SHA256

c49339b4942ca5b55da6e4fc32bb29cbc111b770cf33b88a127f4738a0b788af
SHA512

fc876068d32ce0826f80421a1ba638c1000710ca1054ce2c94be7166e01879f56347a7783162da7be1b3a6391399460048446c74f07657f15d8086b630bd3396
SSDEEP

12288:bmZygPgSePP2GayJZHJDDtnZ8M1ZM5k3qyH+upZD+8rXepkQTAU4ESa3lzUuvsSK:iQgfenhayJZppd1d3VeK+CIAToBUwY

Score

N/A

Malware Config

Signatures

Files

c49339b4942ca5b55da6e4fc32bb29cbc111b770cf33b88a127f4738a0b788af
.exe windows x86

8785938f66f83fe3cec28291a52a5439

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetGeoInfoW
CreateEventW
GetGeoInfoW
GetTickCount
lstrcatA
GetFileAttributesW
GetGeoInfoW
Heap32Next
VirtualProtectEx
GetModuleFileNameA
ResetEvent
GetModuleHandleW
GetGeoInfoW
GetCalendarInfoA
OpenEventW

wmvcore

WMCreateWriter
WMCreateReader
WMIsContentProtected
WMCreateEditor

Sections

.text
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.DATA
Size: 869KB - Virtual size: 2.2MB

IMAGE_SCN_MEM_READ