874748a8a1c4e363dd229188094f158e241d48e73095d37fcf15e771d43f83f4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

874748a8a1c4e363dd229188094f158e241d48e73095d37fcf15e771d43f83f4
Size

276KB
MD5

6bcbd50a48d709df6a833dc577c8696b
SHA1

de514dd21f1fd1ff013668bf44014f2812d3506d
SHA256

874748a8a1c4e363dd229188094f158e241d48e73095d37fcf15e771d43f83f4
SHA512

cef1de37ef5f02ce587c1b21cdea7b553fc435422d1d3abda43fabdc8b3b1103843b1c55935f2526b55ab9e37ee572eceba2796c9118dde79bd8961f4e6badd9
SSDEEP

6144:VASlrLES1XeS7GWFujyEzmEw2QNifeBVs:6/WFuj/w2IVs

Score

N/A

Malware Config

Signatures

Files

874748a8a1c4e363dd229188094f158e241d48e73095d37fcf15e771d43f83f4
.exe windows x86

bc592f93a5af05596ed5686326afbfba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumSystemLocalesW
GetCommandLineA
TlsGetValue
GlobalReAlloc
lstrcatA
GetAtomNameW
GetDateFormatW
CreateProcessW
VirtualProtect
EndUpdateResourceW
GetModuleHandleW

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.megrsrc
Size: 228KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ