c02433ef8cb9f78cd25a4ce00b872b0a86973cfc8e2e5c9ffec66d1549999581 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c02433ef8cb9f78cd25a4ce00b872b0a86973cfc8e2e5c9ffec66d1549999581
Size

281KB
MD5

32b1a3ecfe34c5f9551f16f95082694f
SHA1

06aec2d2718bf963696fa98ce8e983b07e36ae0a
SHA256

c02433ef8cb9f78cd25a4ce00b872b0a86973cfc8e2e5c9ffec66d1549999581
SHA512

847ee3501249d7d7146ddda2761f9d391befd2864bdb7b2ee9ff0817f95b15cf7897fbe0e0cd116be790889c4ce38a4bad57de350fac7f9d9317790ab3cc1e6b
SSDEEP

6144:CglyQYzM53d9sviAlqW2FGuAD8XZdV4o9kUW9AFtyO1JEAZpIVY6PEFz1dU6+CR:CglyQ7VTAFuA4RW9AFtyO1JEAZpIVY6W

Score

N/A

Malware Config

Signatures

Files

c02433ef8cb9f78cd25a4ce00b872b0a86973cfc8e2e5c9ffec66d1549999581
.exe windows x86

858dd33b155343847803c4fe018a793b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
GetVolumeInformationA
ReadFile
lstrcatA
FindFirstFileA
GetLastError
SetLastError
GetProcAddress
GetTempFileNameA
FindClose
LoadLibraryA
FindNextFileA
lstrcpynA
CloseHandle
GetTempPathA
DeleteFileA
HeapReAlloc
HeapAlloc
HeapFree
GetProcessHeap
ExitProcess
GetModuleHandleW
Sleep
ResumeThread
lstrcmpA
CreateFileA
GetComputerNameA
GetModuleHandleA
lstrlenA

user32

wsprintfA

advapi32

GetUserNameA
RegCreateKeyExA
RegCloseKey
RegQueryValueExA

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ