9400890813a42b83c958620073aa0461b46b9e8669aeda1bbdc57be2ed88a4c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9400890813a42b83c958620073aa0461b46b9e8669aeda1bbdc57be2ed88a4c0
Size

309KB
MD5

d5f1c812471d9038a9151887e0d60160
SHA1

15a14b29c6171c0246272f795324942b432371b4
SHA256

9400890813a42b83c958620073aa0461b46b9e8669aeda1bbdc57be2ed88a4c0
SHA512

839bb47594f85d7c7a6e175903f90979333af6d5e9e89854340cac1a7c0f3db29ea494e06aca60adff9b554826b4f1d82b1f1d81460f098fa3f97eeec849fded
SSDEEP

6144:I8f4JVtmEH9sgNFne/Id4SN/lKp80jx8T4p9:h4fci9sgbeoBMp9

Score

N/A

Malware Config

Signatures

Files

9400890813a42b83c958620073aa0461b46b9e8669aeda1bbdc57be2ed88a4c0
.exe windows x86

834fa3c72c72ea18c2587e8535877c06

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
GetPrivateProfileSectionA
GetDiskFreeSpaceW
GetExitCodeProcess
SetEnvironmentVariableA
InterlockedDecrement
FindResourceW
GetCurrentDirectoryA
ExitProcess
lstrcmpA
GetStringTypeW
LoadLibraryA
lstrcpyW
GetPrivateProfileIntA
WaitForSingleObject
GetModuleHandleW
WriteFileEx
InterlockedIncrement
GetLongPathNameA
GetPrivateProfileIntA
GetDiskFreeSpaceW
GetACP
Heap32First

apphelp

SdbCreateMsiTransformFile
ApphelpCheckIME
AllowPermLayer
ApphelpCheckExe

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dbg
Size: 304KB - Virtual size: 308KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE