e7147ac5dd1b2fe66e477b15642964b475bd6ed21b840e5b31808124249ad663 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e7147ac5dd1b2fe66e477b15642964b475bd6ed21b840e5b31808124249ad663
Size

292KB
MD5

84164cda861cd63b2139ab3d52f610d0
SHA1

739ac38a0fd57baa12a75f351cec5a70febf8198
SHA256

e7147ac5dd1b2fe66e477b15642964b475bd6ed21b840e5b31808124249ad663
SHA512

b8e3475f2aa310efeeb3919efae6e23e1570354aab93e8b4d39aab289fba96309a5eb64e17c668c4ff018f595dc1ad82af4d2db79dfab174d51a008f8799d127
SSDEEP

3072:XSF4Ij28/1SjDGo5yfWaGNggNa7C4MbByvb9j7B3pseYK8A5tydw3oZ3cZnWsYqc:X2j5tyPMwQrSpCMPNA7ZHhZYxp

Score

N/A

Malware Config

Signatures

Files

e7147ac5dd1b2fe66e477b15642964b475bd6ed21b840e5b31808124249ad663
.dll windows x86

f6a1e1a2ad45e67dbfa16afc53a98f71

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
CloseHandle
ReadFile
GetLastError
CreateFileA
GetStringTypeW
GetStringTypeA
GetTickCount
RtlUnwind
GetCommandLineA
GetVersion
HeapFree
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
HeapReAlloc
HeapSize
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
LCMapStringA
LCMapStringW

oleaut32

SysAllocStringLen

Sections

.text
Size: 252KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ