f2fbe60321edb2b0d523e88ed10b574404c8959b3f897a7750842dd31ff762b6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f2fbe60321edb2b0d523e88ed10b574404c8959b3f897a7750842dd31ff762b6
Size

38KB
MD5

25fb82752d2cdd0385d29adb14b18ea0
SHA1

a399e4be45b3a81f352fee398d731f723298000b
SHA256

f2fbe60321edb2b0d523e88ed10b574404c8959b3f897a7750842dd31ff762b6
SHA512

c52d9e6d94efa0a801208536c6f932a1ae2d17cb1ce3f770fd5b309f08e867fc30665c702615862039e744c74b8c48ab29d5bde97c5f63b93d55ebc97c9ff27e
SSDEEP

768:jt9dhJJgq+dBTPtcYfMgY0oCk2HJYNT1oKg0xzCI487A:jcqSN+QMZrCk2HJY/oKg0dn4cA

Score

N/A

Malware Config

Signatures

Files

f2fbe60321edb2b0d523e88ed10b574404c8959b3f897a7750842dd31ff762b6
.exe windows x86

046bc26692e016c7701bc1c67a0f3bd3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
AreFileApisANSI
GlobalMemoryStatus
GetStartupInfoA
IsBadCodePtr
QueryPerformanceCounter
GetSystemDirectoryA
GetVersionExA
GetWindowsDirectoryA
GetCurrentDirectoryA
GetSystemTime
GetSystemInfo
GetTickCount
GetSystemTimeAdjustment
GetProcAddress
VirtualAlloc
VirtualProtect
GetCurrentProcessId
GetEnvironmentStrings
GetLogicalDriveStringsA
LoadLibraryA
GetModuleHandleA
GetCurrentThreadId
GetLastError
IsBadReadPtr
IsBadWritePtr
IsBadStringPtrA
GetLogicalDrives
GetConsoleTitleA
GetConsoleCP
QueryPerformanceFrequency
GetComputerNameA
GetConsoleOutputCP
GetDiskFreeSpaceExA
GetTimeZoneInformation
GetVolumeInformationA
GetCurrentProcess
TerminateProcess

user32

GetCapture
GetDoubleClickTime
GetForegroundWindow
IsWindow
GetActiveWindow
GetKBCodePage
GetDesktopWindow
GetFocus
GetKeyboardType

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ