ab6ce78456cd653980a67cf5c4377584a0b5e9b07a388f8d5cb029de39c9d92f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ab6ce78456cd653980a67cf5c4377584a0b5e9b07a388f8d5cb029de39c9d92f
Size

70KB
MD5

d1455b0c28a145c5d207f276f945abca
SHA1

8767394b3d6315020c47a836557d582148634db3
SHA256

ab6ce78456cd653980a67cf5c4377584a0b5e9b07a388f8d5cb029de39c9d92f
SHA512

0c898889b1a2b0029f74c0b8ce605f9da82c93d123fdc667d85522fd901f0edefdebda6f25cee3287647360c7d21d9f59be165951f8c5b915fe826d2deeaf59c
SSDEEP

1536:EDRdJh+oxycU9WIhhSxjKufaP6INcMfwB:gdX+o8cQZrCjP/4ff

Score

N/A

Malware Config

Signatures

Files

ab6ce78456cd653980a67cf5c4377584a0b5e9b07a388f8d5cb029de39c9d92f
.exe windows x86

2384dd8bc2604dee00415d713b13dc06

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_strnicmp
memcpy
fclose
_acmdln
__p__fmode
isxdigit
printf
_tzname
_findfirst
__p__commode
__set_app_type
exit
_wspawnv
_inpd
_mbsrchr
_adjust_fdiv
_ismbbpunct
_controlfp
ungetc
_wtmpnam
_safe_fdiv
__setusermatherr
_time64
__getmainargs
_except_handler3
_exit
_splitpath
_initterm
tmpfile
_XcptFilter

kernel32

UnhandledExceptionFilter
WaitForMultipleObjects
QueryPerformanceCounter
SetHandleCount
WriteConsoleW
FindResourceA
GlobalMemoryStatus
GetModuleHandleA
WriteConsoleA
FindClose
SetStdHandle
GetFileAttributesA
lstrcpynA
IsBadStringPtrA
GetLocaleInfoA
GetStartupInfoA
Sleep
HeapSize

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ