1efd44a4639b9fd7ef39f7f92385e42ff5e737dca3e0e600e1b2df8ad7a5dc83 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1efd44a4639b9fd7ef39f7f92385e42ff5e737dca3e0e600e1b2df8ad7a5dc83
Size

260KB
MD5

44cc1e417022953803a7445e628c8237
SHA1

50ef3bc85e8d6d0c3449c40b2c8810c1835bd477
SHA256

1efd44a4639b9fd7ef39f7f92385e42ff5e737dca3e0e600e1b2df8ad7a5dc83
SHA512

8f82359e3df95eed81eb1320c6372f89a18251f6289a92ff116666d27aef040d2b6decc344f10ebb712ede5d3df6959d31ef41767bc98fbffee79f29299b6040
SSDEEP

6144:QO9hbvpvHF6Sz0S1Bx/Bkr9HamXo44IVYBs9cqX2h:QO/p98SBXkp6m9PkstX2h

Score

N/A

Malware Config

Signatures

Files

1efd44a4639b9fd7ef39f7f92385e42ff5e737dca3e0e600e1b2df8ad7a5dc83
.exe windows x86

41507753530d76bf751bd1509806ec8e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

Sections

CODE
Size: 90KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE