cd25c3aa2131723727596f15495e4fb10de203f8db2ca2585b12cbb03a12821f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd25c3aa2131723727596f15495e4fb10de203f8db2ca2585b12cbb03a12821f
Size

132KB
MD5

567a57dcde91288042e0ce141dc3cdcb
SHA1

635dbf29aa96df70ed2216a0258f58dcc2ae163b
SHA256

cd25c3aa2131723727596f15495e4fb10de203f8db2ca2585b12cbb03a12821f
SHA512

d6763014e55451d1ca432b03cd6e2ee6cea8d4f1f2b16f7c8e1987ab91c70e6e105e0ce8cba65bf77d73863550eea56af4371ff672f80955bbb2deb962ffe841
SSDEEP

3072:BQ4IUUF9r3MTOGVkhxc1RYFB2/BjodPSPwzUM:1XO9r3HGahiwB2/1odKo

Score

N/A

Malware Config

Signatures

Files

cd25c3aa2131723727596f15495e4fb10de203f8db2ca2585b12cbb03a12821f
.exe windows x86

5549d8829f3cbfabc7c2f004e53289f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DoEnvironmentSubstW
DuplicateIcon
RealShellExecuteW
Options_RunDLLW
Control_RunDLLA
SHFileOperationA

comdlg32

ChooseColorA
dwLBSubclass
PrintDlgExA
FindTextW
ReplaceTextW

Sections

.text
Size: 89KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE