920f4c72065bdd57d92593487063998071ab60fe71a463278b82142cf65a3c92 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

920f4c72065bdd57d92593487063998071ab60fe71a463278b82142cf65a3c92
Size

168KB
MD5

dd509ae319ad2a9ac969f26c3a95387c
SHA1

e7825072a874e5dbe39b0a176ff9857a9ff5f4b0
SHA256

920f4c72065bdd57d92593487063998071ab60fe71a463278b82142cf65a3c92
SHA512

9ca757ae453381ed02c97305d20f18a673bb7df4176b54f9f06562eec8117a25eac02278f664090278dd6759f9a01e4fbc741d3e64c1393044efcf2335181270
SSDEEP

3072:LOBzDEeZyVstQculLwFU5jwaaHw7Koj4re2IRK5PHheT/uOBu:LiYE1tuxfu5PBeyKu

Score

N/A

Malware Config

Signatures

Files

920f4c72065bdd57d92593487063998071ab60fe71a463278b82142cf65a3c92
.exe windows x86

716de30747255357f1517392e9cf112f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CreateFileA
VirtualProtect
GlobalAlloc
VirtualAlloc
GetDateFormatA

msvcrt

__p__commode
_except_handler3
__set_app_type
__setusermatherr
_adjust_fdiv
_initterm
__p__fmode

Sections

.text
Size: 60KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsr1
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE