f60c86237698de2abf30595705ceeabca218a9369073d4958ec3103bce0b0d59 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f60c86237698de2abf30595705ceeabca218a9369073d4958ec3103bce0b0d59
Size

1.1MB
MD5

01c680587c2fcfc3f4b5080ec1054f5f
SHA1

0808206eb2db0f2d0f69cf3b242aa738a17da7f6
SHA256

f60c86237698de2abf30595705ceeabca218a9369073d4958ec3103bce0b0d59
SHA512

164329efda2776a4f25d7ff0bef5da2cfe8379bce53ac481fff670a452de084f68c5213132a5354bf700b51cc03b63348aeb129411a01d3ea7c0e0874c228704
SSDEEP

24576:nVzdWYTRQjDQCC2IGe8lyl/ygGHOSB19t:nfT6zIjMgMX

Score

N/A

Malware Config

Signatures

Files

f60c86237698de2abf30595705ceeabca218a9369073d4958ec3103bce0b0d59
.exe windows x86

61a78b95b6ed6165ebefdbbd95ba8c4b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
GetVersion
GetModuleHandleW
GetCommandLineW
GetUserDefaultLCID
GetCurrentThread
GetCommandLineA
GetCurrentThreadId
GetCurrentProcess
GetUserDefaultLangID
GetTickCount
GetLastError
HeapAlloc
GetProcessHeap
GetSystemDefaultLCID
SetEnvironmentVariableA
lstrlenW
ReadFile
GetModuleFileNameA
FlushFileBuffers
GetVersionExA
CloseHandle
QueryPerformanceCounter
SetEvent
WaitForSingleObject
GetModuleHandleA
LocalAlloc
GetLocaleInfoA
WideCharToMultiByte
FreeEnvironmentStringsA

user32

ScreenToClient

Sections

.text
Size: 329KB - Virtual size: 329KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 814KB - Virtual size: 813KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ