b5052c44ae016b0aa79f7478056ef868319cc45cc7ca2b3aa8f1a0ca173a66fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b5052c44ae016b0aa79f7478056ef868319cc45cc7ca2b3aa8f1a0ca173a66fc
Size

22KB
MD5

27e6b7a836f20929346e6065c902df14
SHA1

ffdc35fd34b2bd65aef7457c42da35a4c3b717fc
SHA256

b5052c44ae016b0aa79f7478056ef868319cc45cc7ca2b3aa8f1a0ca173a66fc
SHA512

f58f723c344f395705cd2a8259d19a48cbb02596ad6a1bbe45cbacd312cb929be24971ef66a3791de54bd03bb400ef4776a04c26d71fc2ebe31b0009e8929318
SSDEEP

192:Yg7g7CSElt7TwdCBbyZWNnZy6N8Q0aRdfe/RxUl01mozxz2Iws:2dE3xS2ZyMCCd6RxUAJx2ds

Score

N/A

Malware Config

Signatures

Files

b5052c44ae016b0aa79f7478056ef868319cc45cc7ca2b3aa8f1a0ca173a66fc
.exe windows x86

e746617d3748bcff30c7e09afc82efed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadPriority
GetCurrentThread
CloseHandle
GetPriorityClass
GetCurrentProcess
CreateFileA
TerminateProcess
WaitForSingleObject
GetLastError
CreateProcessA
lstrcatA
MoveFileExA
GetModuleFileNameA
GetModuleHandleA
WriteFile
lstrcpyA
GetSystemDirectoryA
ExitProcess

user32

GetParent
EnableWindow
IsWindowEnabled
MapVirtualKeyA
GetKeyState
ShowWindow
IsWindow
GetWindow
IsChild
GetActiveWindow
IsWindowVisible
GetCursor
IsZoomed

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avp
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE