cd861b3bdf2907a7e3acc256004918ccb5ccb0b51e961fcf23981c0deaad50c9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd861b3bdf2907a7e3acc256004918ccb5ccb0b51e961fcf23981c0deaad50c9
Size

343KB
MD5

a4a8628d409554c66d0a08255dbb8b64
SHA1

00ae1d42bf967948b86cf3ae008d90fd1e0efd84
SHA256

cd861b3bdf2907a7e3acc256004918ccb5ccb0b51e961fcf23981c0deaad50c9
SHA512

70a296d5c4f6b8fe7de803a7c685d265bd60cfe4639b63a5c2592d766c7b70ee6330b139fd9d037318d9356d7e73c5dc4821ad296256a16e1ad7bb26a9a16e06
SSDEEP

3072:fODF06g1YQ/JCFgeiLIBgdAK1pL+wlm1x7oMvQ11aZijtj5Tbd6mF0yQBVdJxPUr:2DR4hfgyQerZf6BD3sr

Score

N/A

Malware Config

Signatures

Files

cd861b3bdf2907a7e3acc256004918ccb5ccb0b51e961fcf23981c0deaad50c9
.exe windows x86

e2bf10fcb6977cb97a081d462a036b6c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileA
ExitProcess
GetModuleFileNameA
GetTempPathA
ReadFile
SetFilePointer
WriteFile
lstrcatA

shell32

ShellExecuteA

Sections

.text
Size: 1024B - Virtual size: 762B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ