d245b4070f398a7bab8d3ec53c51e1d4695051bb8cccb58ddf1413fad5d53f70 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d245b4070f398a7bab8d3ec53c51e1d4695051bb8cccb58ddf1413fad5d53f70
Size

6KB
MD5

59288813771bbf9caa3081b5eb6821a6
SHA1

695574e4f1c76f96f2738c694b9d28c4e6f53469
SHA256

d245b4070f398a7bab8d3ec53c51e1d4695051bb8cccb58ddf1413fad5d53f70
SHA512

2b94446e9e707abf980e8f74fccb74096038ee2d8eb20044d02f24276b054b5b4026cb8c526481c28fa2e072c7b8cfbc601046f0c69c5439239204938ebe8b15
SSDEEP

96:Z1vtPW9uUOrF/NXFINHqMy1BV3gnFgkLatSq0Bx2jFE+r3qMHLJ1X:LtXRtF68PgnFjutSnBIhEU3drJ

Score

N/A

Malware Config

Signatures

Files

d245b4070f398a7bab8d3ec53c51e1d4695051bb8cccb58ddf1413fad5d53f70
.exe windows x86

251575623650bc933bad8739ca1c1602

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
Sleep
CreateThread
ExitProcess
VirtualAlloc
RtlMoveMemory
WaitForSingleObject

user32

MessageBoxA

ntdll

NtSetInformationThread
RtlDecompressBuffer

Sections

.code
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 390B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE