79dd629ca8367f63e14a63ecc621844ad2cab5c3c0da00214476c5feaea1d4dc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

79dd629ca8367f63e14a63ecc621844ad2cab5c3c0da00214476c5feaea1d4dc
Size

200KB
MD5

be3b5144d8a1006491cf8c8e3473e70b
SHA1

a9d08c682229c21ea498824f33ca5caf940570cb
SHA256

79dd629ca8367f63e14a63ecc621844ad2cab5c3c0da00214476c5feaea1d4dc
SHA512

3fd747fad98f18db6ab60a19891b5a0669fd3f860dc3ba8b13cc1931d4f18bb9e6526c6a8f1e5628f0a43a49c54e1e47be24b14d13bf96422cea97f62a5cc160
SSDEEP

3072:XT2YslS5GTnLE9nu6tQBzJ8a09wFerE1m3GEsYRlpG8:j21Mu6tm8avek4OZ

Score

N/A

Malware Config

Signatures

Files

79dd629ca8367f63e14a63ecc621844ad2cab5c3c0da00214476c5feaea1d4dc
.exe windows x86

9b6b0a236bd5c5916090bd5a2b575b17

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
GetCommandLineA
MulDiv
GetLastError
GlobalFindAtomA
GetStartupInfoA
GetDriveTypeA
GetVersion
GetCurrentThreadId
GetUserDefaultLangID
GetConsoleOutputCP
GetCurrentProcessId
lstrlenW
SetCurrentDirectoryA
GetModuleHandleA
GetACP
QueryPerformanceCounter
DeleteFileA
GetThreadLocale
IsDebuggerPresent
Sleep
GetWindowsDirectoryA
DeleteFileW
GetProcessHeap
GetCurrentProcess
GetOEMCP
SetLastError
GetCommandLineW
lstrcmpiA
RemoveDirectoryA
VirtualAlloc
lstrlenA
LoadLibraryW
GetCurrentThread
GlobalFindAtomW
lstrcmpiW
GetModuleHandleW
lstrcmpA
GetTickCount

user32

CharNextA
GetSystemMetrics
GetDC
GetDesktopWindow

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ