44c77d67d5c11deac8129bbe7e2186031bc4de31cd017aeb6f13e196dbf4d2df | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44c77d67d5c11deac8129bbe7e2186031bc4de31cd017aeb6f13e196dbf4d2df
Size

289KB
MD5

7fab1fda2a5700df9a4688c42f2a3b25
SHA1

60b5f7525fc98f412f3826d562e2bf432269cd0e
SHA256

44c77d67d5c11deac8129bbe7e2186031bc4de31cd017aeb6f13e196dbf4d2df
SHA512

5fb8893a3b72d63a7850027e3e3aa904e2da4b7d8f3f7f31f97ea2296e5ed8216b3d3039b2b2b765a7738f08207d123ae04e228a2243614565cb5c5a3dbf487c
SSDEEP

6144:d+IhFwMaUvhHXe/uJbC3FXOGTMhBWx6oQw6mND9C83A:As7N5HuuJbC3ArWx6cFfC8w

Score

N/A

Malware Config

Signatures

Files

44c77d67d5c11deac8129bbe7e2186031bc4de31cd017aeb6f13e196dbf4d2df
.exe windows x86

d3bcfd91e173691f32fb09fd117cfd13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
SetConsoleTitleA
IsValidLocale
IsBadStringPtrA
GetVolumePathNameW
lstrcpyW
DeleteFileA
FileTimeToLocalFileTime
GetCommState
GetLocaleInfoA
lstrcpyW
lstrlenW
GetProcessHeap
GetStdHandle
GetModuleFileNameA
lstrcpyW
GetStartupInfoW
lstrcpyW
lstrcpyW
VirtualAllocEx
SetCurrentDirectoryA
CreateEventA
GetModuleHandleA

termmgr

DllUnregisterServer
DllRegisterServer
DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 277KB - Virtual size: 276KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ