c4b6d2c944a8f0d625e8c68c3b018176416df9a504bd42eee74e448efe6f9af1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4b6d2c944a8f0d625e8c68c3b018176416df9a504bd42eee74e448efe6f9af1
Size

178KB
MD5

4371e253afd26d5cf24bd23a32c31956
SHA1

c1c0e2cb715ab3de2b7b5cdaadfd94cf4032f986
SHA256

c4b6d2c944a8f0d625e8c68c3b018176416df9a504bd42eee74e448efe6f9af1
SHA512

b3fb0fdc5c8c8555c52a0e612408975ef31f03f5ac7e90b9b7769eba3fa6146382fe894d764553eaa23252ca051ef719a310e622f11fc5b7c1785b034cd86836
SSDEEP

3072:XWLhxu4N1iEfIwJmis96irPCv3OGOfV2aBXaanUyPc:GXuDECiR3OfV2SaanU

Score

N/A

Malware Config

Signatures

Files

c4b6d2c944a8f0d625e8c68c3b018176416df9a504bd42eee74e448efe6f9af1
.exe windows x86

06bdb42989e045ef5ed543fa9692f7e5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowDC
FindWindowA

kernel32

GetDriveTypeW

Exports

Exports

?BeginForce##YGPAXU_RECTL###Z
?CellRinger@@YGPAXU_RECTL@@@Z
?LineHandle@@YGPAXU_RECTL@@@Z
?ProperSight@@YGPAXU_RECTL@@@Z
?TimerConnect@@YGPAXU_RECTL@@@Z

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ