77f536364e10a4c89cc398592c4c7e2a9eab915ce76ed12d330661b78e146839 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77f536364e10a4c89cc398592c4c7e2a9eab915ce76ed12d330661b78e146839
Size

75KB
MD5

f25b2b87d55f3041e0dbde4db1673347
SHA1

90c23e77ff720925dfd0191625d9e656559b8789
SHA256

77f536364e10a4c89cc398592c4c7e2a9eab915ce76ed12d330661b78e146839
SHA512

04d28c8cde0199596f22c69e07a5abbcb54a2d152c06340e77747c1950f82573d5a42b0265b2d2058dbd290f2f073757c4cd9761731966aca0bc1be6761cb87e
SSDEEP

1536:0j8d06HjiifOBqvUlEhHJxdNEGm6DjIAJBV3L+lfDTw:0j8d0oiifO+hHJxDEGm6ooBkw

Score

N/A

Malware Config

Signatures

Files

77f536364e10a4c89cc398592c4c7e2a9eab915ce76ed12d330661b78e146839
.exe windows x86

8d1f3607f6f644aa45436b6badedcfb7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateProcessA
ExitProcess
FreeLibrary
GetCommandLineA
GetCurrentProcess
GetModuleFileNameA
GetProcAddress
GetProcessHeap
HeapAlloc
HeapFree
IsBadReadPtr
LoadLibraryA
VirtualAllocEx
VirtualFree
VirtualProtect

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 20B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE