b4cdd319717d115a029197dfb74834af7580f38b715a29c42f22942a500dc653 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4cdd319717d115a029197dfb74834af7580f38b715a29c42f22942a500dc653
Size

1.1MB
MD5

69867e21dc250b375d263ea7b4faf896
SHA1

a8182b1395f31bf8173139c1662f52abcaa78d64
SHA256

b4cdd319717d115a029197dfb74834af7580f38b715a29c42f22942a500dc653
SHA512

8bf55a6723102c5ce960bb36ba5f9c40486eabdbc0e0d83b7e2dee121abac3edbe743fa667955971e626d38efbd54ea1668e88b715ac78aaf82f1279a511e7e8
SSDEEP

24576:jSdbQCuT3oKPrUikfHpAxWqNVMyACWJtINPZavgjq+Ksh1UcPb:j+sCuTOA1Vl+tIzad+Rh17z

Score

N/A

Malware Config

Signatures

Files

b4cdd319717d115a029197dfb74834af7580f38b715a29c42f22942a500dc653
.exe windows x86

7a7f99a85b3869e1bb043286fbee6634

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetCurrentProcessId
GetCurrentThreadId
GetSystemDefaultLCID
GetLastError
GetSystemDefaultLangID
GetModuleHandleA
GetCommandLineW
GetCommandLineA
GetVersion
GetUserDefaultLangID
GetTickCount
GetUserDefaultLCID
GetCurrentProcess
VirtualAlloc
InterlockedIncrement
GetProcAddress
DeleteFileW
LoadLibraryExW
WriteFile
GetConsoleMode
LoadLibraryExA

user32

PostQuitMessage
DispatchMessageA
MessageBoxA
LoadCursorA
GetSystemMetrics
GetWindowLongA
BeginPaint

Sections

.text
Size: 331KB - Virtual size: 331KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 752KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ