42c30a815fd04cc051d8411c210290fbfb238bcb5dd513eb78a79d2879f4226c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42c30a815fd04cc051d8411c210290fbfb238bcb5dd513eb78a79d2879f4226c
Size

1.5MB
MD5

33085a56200e37d351613b8e9bf51aeb
SHA1

d8d580737bc66afd26e9029aa4d78153d9127e38
SHA256

42c30a815fd04cc051d8411c210290fbfb238bcb5dd513eb78a79d2879f4226c
SHA512

7bd151867aa61babca0d1be556b5d31d4c0a0a8ab90058e18a9b628f4e61e4c6cf3a2cd68e7516b82c4f469aa41bc16f566f856d373f867715196db69a98c7e3
SSDEEP

49152:Pdo/E80yQdC7Ai3W8gFavJVWoffBZ40pL++:Pe8MRRxVWSQ0k+

Score

N/A

Malware Config

Signatures

Files

42c30a815fd04cc051d8411c210290fbfb238bcb5dd513eb78a79d2879f4226c
.exe windows x86

a230c4dc1cb1c779f7bd94247037067d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
GetVersion
GetTickCount
GetModuleHandleA
GetCurrentThreadId
GetLastError
GetCurrentThread
GetSystemDefaultLangID
GetCommandLineA
GetCurrentProcess
GetModuleHandleW
GetCommandLineW
GetUserDefaultLangID
HeapAlloc
GetProcessHeap

user32

SetWindowPos
RegisterClassA
PostQuitMessage
GetDC
SendMessageA
PostMessageA
TranslateMessage
ScreenToClient
LoadStringA
TrackPopupMenu
GetParent
LoadCursorA
SetTimer
GetSystemMetrics
GetWindowRect

Sections

.text
Size: 350KB - Virtual size: 350KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ