42b365a91ebe681892a7d138e0a43257a5ebb518b0e534ea2318c9ec319e8e24 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42b365a91ebe681892a7d138e0a43257a5ebb518b0e534ea2318c9ec319e8e24
Size

1.8MB
MD5

cfdaaa1ac239bdf0070f00a5e8dd76cc
SHA1

0dcd8ffd5bef7f773cb9e9b8649631a6319c57ab
SHA256

42b365a91ebe681892a7d138e0a43257a5ebb518b0e534ea2318c9ec319e8e24
SHA512

2e0ec137980d42d048570aabb0f25409b2a2a70816a330e2a441ee2e4d7344c0b9c235c17f64ab9f5cc3f9237637ccdf79aeb97fd8f8df52cafb19308a1cf2a9
SSDEEP

49152:/qAfxs0VYiwTxEpwc6cTe8psUrMo8Plw3fOx:/hCm+5c7TedwPa

Score

N/A

Malware Config

Signatures

Files

42b365a91ebe681892a7d138e0a43257a5ebb518b0e534ea2318c9ec319e8e24
.exe windows x86

8156358450a695679435f3b210cbb469

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
CreateFileA
LoadLibraryA
GetCurrentProcess
CloseHandle
LCMapStringA
ExitProcess

user32

wsprintfA
CreateWindowExA
SetWindowLongA
CloseWindow
CharLowerBuffA

advapi32

RegQueryValueA
RegDeleteKeyA
RegCloseKey
RegOpenKeyA
RegSetValueA
RegEnumValueA
RegCreateKeyA
RegEnumKeyA
RegDeleteValueA

Sections

.text
Size: 4KB - Virtual size: 17.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ