20f0b8380afb27373d4c6d64b2ddd97dea1bf27407e895d13ed3419f7997768c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20f0b8380afb27373d4c6d64b2ddd97dea1bf27407e895d13ed3419f7997768c
Size

24KB
MD5

640401afb5c9fc6a79e196461ee69797
SHA1

a87a660bc68d98805740485fd155df6b346e4554
SHA256

20f0b8380afb27373d4c6d64b2ddd97dea1bf27407e895d13ed3419f7997768c
SHA512

61512d4c556dcddc8565ecd083dee0f7357d22f19fb9e60394ce73dfa9ad02e29c47a82c293f592eb40ba6af19b0dac42c7282724e5f9525129f6e5c26d9662e
SSDEEP

192:BxXtXrTN6ZijwS4F1SsTC0hghrQX9LxNJ9+ImZBdZDZmtUWsonWLnvNU1ryyZjBR:XpJY4wh/i6+ImlTmhcuyyZjBW3y6oF

Score

N/A

Malware Config

Signatures

Files

20f0b8380afb27373d4c6d64b2ddd97dea1bf27407e895d13ed3419f7997768c
.exe windows x86

259878f64b312b39f4e820c14121ff7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
LCMapStringW
GetStringTypeA
GetModuleFileNameA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
GetStringTypeW

user32

ExitWindowsEx
MessageBoxA

advapi32

RegOpenKeyExA
RegSetValueExA
RegCloseKey

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE