984fb99931ac9c0877218b81f652c5c7a7edf023d3f595cf20e5afa171460872 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

984fb99931ac9c0877218b81f652c5c7a7edf023d3f595cf20e5afa171460872
Size

280KB
MD5

a3382539e9f600d52a410b6e19f2c81b
SHA1

6f872a39be7c1aa20fa1375fb6dc436806693609
SHA256

984fb99931ac9c0877218b81f652c5c7a7edf023d3f595cf20e5afa171460872
SHA512

2a2f7f52588c7da09aabb3ae076fbc33c03b8703f1a19abded903776a983b6026203aa71611bd3cea8f543324c05589dcb62edae380afc638944c332e59a0cf8
SSDEEP

6144:CmWd/ObqEMbbLvND5vLkqwbBaqRLkQ6zh54wTThdVbl7iSxmk2JWn:CmK/OOjrsBaqRLoHhdVk4cJWn

Score

N/A

Malware Config

Signatures

Files

984fb99931ac9c0877218b81f652c5c7a7edf023d3f595cf20e5afa171460872
.exe windows x86

41507753530d76bf751bd1509806ec8e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

Sections

CODE
Size: 273KB - Virtual size: 408KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE