98186fff519581c6b9e913330969552974ecc2f3c64e2b533e670f245cf19e68 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98186fff519581c6b9e913330969552974ecc2f3c64e2b533e670f245cf19e68
Size

56KB
MD5

0a1ce4488e17c41c702115dac5caea08
SHA1

ea857ee3c9075ebe7a0ea521984d515f1d80e8e2
SHA256

98186fff519581c6b9e913330969552974ecc2f3c64e2b533e670f245cf19e68
SHA512

9dc51e2df6a6125644108d49288b0e3ffa2d27c6dea71ada8b34a639820ee724eedfe296ce4d5590c7026942e60ec0320aafd3b38494fa0c62996cbfa723dcb3
SSDEEP

768:i/c5eDtoUFFHH3jAiNBuX0t6ca4vWg8d06:0c6tVFlH3siNBukQAv6

Score

N/A

Malware Config

Signatures

Files

98186fff519581c6b9e913330969552974ecc2f3c64e2b533e670f245cf19e68
.exe windows x86

bcb32376aceb080bf2e4cdbefe43b095

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

GetUserNameA
RegCloseKey
RegOpenKeyExA
RegDeleteKeyA
RegSetValueExA
RegCreateKeyA
RegEnumKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyA
RegQueryValueA

kernel32

LoadLibraryA
LocalFree
GetLastError
GetProcAddress
lstrcpynA
lstrlenA
ExpandEnvironmentStringsA
LocalAlloc
CloseHandle
lstrcpyA
lstrcmpA
FormatMessageA
lstrcmpiA
ExitProcess
GetModuleHandleA
GetStartupInfoA
SetErrorMode
GetCommandLineA
lstrcatA
CreateDirectoryA
GetFileAttributesA
GetWindowsDirectoryA
FreeLibrary
WinExec
GetVersionExA
RaiseException
InterlockedExchange

user32

SetDlgItemTextA
MsgWaitForMultipleObjects
PeekMessageA
MessageBoxA
DispatchMessageA
TranslateMessage
EnableWindow
ShowWindow
GetDlgItem
SetForegroundWindow
LoadStringA
CreateDialogParamA
CharUpperA
CharPrevA
GetMessageA
CreateWindowExA
RegisterClassA
FindWindowA
DefWindowProcA
SetTimer
PostQuitMessage
KillTimer
CharNextA
DestroyWindow

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 308B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ