979762e1c206b3068659be665f221d7be554a0def594231744ebf0ac9e609556 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

979762e1c206b3068659be665f221d7be554a0def594231744ebf0ac9e609556
Size

36KB
MD5

2a038dd097f4f3d331df742f5acb00b3
SHA1

4b6fd9a35bf40966d5ae45eb5d4514b1aa92686c
SHA256

979762e1c206b3068659be665f221d7be554a0def594231744ebf0ac9e609556
SHA512

5c9759dd5f8918e9c267a5ee119a3fd2aa621fd6565d2d72ef37fb732e640aa8b328d9eaa0418fb1c2e9cd8d825684d0a68439c134b9369dcfc97eaf2652b349
SSDEEP

384:4nuv29vaYNf6wZJaNAWpRxum2Y38shi3VSY1JloIrqxVduOqTq/iqeie2GPP03G4:8/paNAo5/i38zKcV6oiT2cPRgjXT/

Score

N/A

Malware Config

Signatures

Files

979762e1c206b3068659be665f221d7be554a0def594231744ebf0ac9e609556
.exe windows x86

4cb58680a36a3627de4672fcea20e24b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesW
GetProcAddress
LoadLibraryA
ExitProcess
ReadProcessMemory
GetCurrentProcess
CreateProcessA
WaitForSingleObject
CreateThread
SizeofResource
LoadResource
FindResourceA

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 426B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ