b2c31ed7a13ec70c729f0fc35e01e084944503c4404d9d0b670b96c7f94e04c6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2c31ed7a13ec70c729f0fc35e01e084944503c4404d9d0b670b96c7f94e04c6
Size

88KB
MD5

beebb0c5f85ccfa3f2c72a19fabd999a
SHA1

4cc52db407af1a2370aece3880bbe484872f35a4
SHA256

b2c31ed7a13ec70c729f0fc35e01e084944503c4404d9d0b670b96c7f94e04c6
SHA512

5aa7693a439498a8fb4d5226dc9957d1fb34b1221ab0cd9bdd1e4207064d47fc3f1a9655da83ec1be9940af74e6b2ccafad8379e62756c68e7bd963f68901ea1
SSDEEP

1536:Cc9oenZcGvQPQQDbF7oZ/7BEK9ZCtcyev9gb1ghb17iDVTjxzKPhkMZFgNtQ7:f9oeotJUF+8C/evab1grYJKPdZFgNt0

Score

N/A

Malware Config

Signatures

Files

b2c31ed7a13ec70c729f0fc35e01e084944503c4404d9d0b670b96c7f94e04c6
.dll windows x86

da089da26bc7231a49daffaaacbcf2e8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetErrorMode
FindFirstFileExA
SetFileAttributesA
GetFileSize
MapViewOfFile
UnmapViewOfFile
FlushViewOfFile
CreateFileMappingA
GetFullPathNameA
Sleep
ReadFile
GetModuleHandleA
SetEndOfFile
OpenProcess
GetProcessHeap
GetTickCount
HeapAlloc
DeleteFileA
GetTempPathA
GetFileInformationByHandle
CloseHandle
GetCurrentDirectoryA
GetPrivateProfileSectionA
FindNextFileA
GetPrivateProfileStringA
FindClose
GetTempFileNameA
CopyFileA
RemoveDirectoryA
FindFirstFileA
SetCurrentDirectoryA
GetFileAttributesA
WriteFile
ExpandEnvironmentStringsA
GetFileAttributesExA
GetCurrentProcess
QueryPerformanceCounter
GetModuleHandleW
SetUnhandledExceptionFilter
OutputDebugStringA
HeapFree
SetFilePointer

advapi32

EqualDomainSid
LookupPrivilegeValueA
AdjustTokenPrivileges
OpenProcessToken
IsWellKnownSid

Exports

Exports

ewviqusoe

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 560B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ