0f80bc0ff3cb9f6c3b1eec41a8cdf5f7018a1a4b076441ba4313cb9bc29560a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f80bc0ff3cb9f6c3b1eec41a8cdf5f7018a1a4b076441ba4313cb9bc29560a5
Size

81KB
MD5

48e7cd83e01895c610f7921b80c5e870
SHA1

9900122f30308454ecdefc2ab1928a21fbebdf3f
SHA256

0f80bc0ff3cb9f6c3b1eec41a8cdf5f7018a1a4b076441ba4313cb9bc29560a5
SHA512

10d7a3281a4294066e22e1bc22df20f43ec6795e5ada76f7174f7a0fb54ef57a7507cc5a766b66d0798dcc22607de8523d9dc7525f375925f8b9c5f8927a0028
SSDEEP

1536:LiZA0H60/jZRj9OCQqGCXL67WA3cP3JoMGxjqrSdqK0SFoZBOPR:LkAmLRjYCQqVL6gPojFGa6OPR

Score

N/A

Malware Config

Signatures

Files

0f80bc0ff3cb9f6c3b1eec41a8cdf5f7018a1a4b076441ba4313cb9bc29560a5
.exe windows x86

9b6e77349bd1bcc6511be4475944f9b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
GetShortPathNameA
MoveFileA
GetLocalTime
GetThreadLocale
IsBadCodePtr
VirtualQuery
GetTickCount
GetUserDefaultLangID
GetTempPathA
GetModuleHandleW
QueryPerformanceCounter
GetTempPathW
DeleteFileA
WaitForMultipleObjects
LocalFileTimeToFileTime
GetFileAttributesA
SizeofResource
Sleep
GetWindowsDirectoryA
GetStringTypeA
GetFileType
VirtualProtect
GetExitCodeProcess
LoadResource
SetThreadLocale
GetCommandLineA
GetModuleHandleA
FileTimeToSystemTime
GetFileTime
LocalFree

msvcrt

_initterm
_XcptFilter
_adjust_fdiv
__getmainargs
__p__fmode
__setusermatherr
__p___initenv
_exit
__set_app_type
__p__commode
_except_handler3
_controlfp

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ