b45500f42107c9608eb132cb70892b4fff004c670ae00315bf0d6fe8b5086c51 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b45500f42107c9608eb132cb70892b4fff004c670ae00315bf0d6fe8b5086c51
Size

48KB
MD5

9be2678dd09299f428a425ea09e5d3ee
SHA1

812235847b40a3d18cb8f53c6df4b48e7ba2d712
SHA256

b45500f42107c9608eb132cb70892b4fff004c670ae00315bf0d6fe8b5086c51
SHA512

a55c88f848a6294dcbf474b1d847666a47a2d86cc3ae39d1113fde0aebd90be2f494bece01e97ddf80bbf2f427ee9cd9c5624bd7436c70949dd8afc3ce739ef9
SSDEEP

384:0cwVnc8B8Ohoy8tWoKW2QQGLvk9+GtgB1q88N2ejI2C+YL3RJgUtmikmtiTH4/ou:0cwePOhoWqvkJu/qLJjKLLLrkmti8/o

Score

N/A

Malware Config

Signatures

Files

b45500f42107c9608eb132cb70892b4fff004c670ae00315bf0d6fe8b5086c51
.exe windows x86

5949053a96f5cdb95c150c4dfd037c06

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSpecialFolderPathA

wininet

InternetReadFile
InternetCloseHandle
InternetOpenUrlA
InternetOpenA

kernel32

GetCurrentProcess
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
SetEndOfFile
GetVersion
CopyFileA
GetModuleFileNameA
HeapReAlloc
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapFree
VirtualFree
VirtualAlloc
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
GetLastError
CloseHandle
ReadFile
TerminateProcess
SetHandleCount
GetStdHandle
GetFileType
SetFilePointer
WriteFile
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
RtlUnwind
SetStdHandle
FlushFileBuffers
CreateFileA
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE