bc4f5b096c9876db34def7c62e77224d635d5ed76fe464ccf2ca748420b062a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc4f5b096c9876db34def7c62e77224d635d5ed76fe464ccf2ca748420b062a0
Size

306KB
MD5

e40111fdf24dedebbe1fe12734f4a169
SHA1

a352778b94a95b0734a443844ba1b570adb7e24a
SHA256

bc4f5b096c9876db34def7c62e77224d635d5ed76fe464ccf2ca748420b062a0
SHA512

76d6e5c87e2afa8851643aceb182e7c86c8d487de3f4cd1ecea133adf7043519fffea2cc056bca15280ad1bdb2e039151e21fb3c27abf840486af3cb3daa243a
SSDEEP

6144:fVcn+VyDvZUGBcxR1U5hGLCDjNBwoizp0S+qooQG6mGEgPBZI:dcn6ybZU9/1ETnN2oizCJf3ESI

Score

N/A

Malware Config

Signatures

Files

bc4f5b096c9876db34def7c62e77224d635d5ed76fe464ccf2ca748420b062a0
.exe windows x86

ef7941b76f80c94fd10aa78d76b22496

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileIntA
DeleteFileW
TlsAlloc
CreateEventA
FormatMessageA
UnmapViewOfFile
lstrcpynA
SetCurrentDirectoryA
VirtualAlloc
GetModuleHandleA
TlsAlloc
GetLocaleInfoW
GetNumberFormatA
GetCurrentProcess
lstrcpynA
lstrlenA
GetModuleFileNameW
TlsGetValue
lstrcpynA
lstrcpynA
GetStartupInfoW
GetFullPathNameA
lstrcpynA

wavemsp

DllGetClassObject
DllUnregisterServer
DllRegisterServer
DllCanUnloadNow

Sections

.text
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.edata
Size: 289KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ndata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ