d838b792db860a72ef2b9c3dcd96a163773987d8f730d13cd9b755b55f5d9a6d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d838b792db860a72ef2b9c3dcd96a163773987d8f730d13cd9b755b55f5d9a6d
Size

212KB
MD5

35a88184b6ce44c0e3892439570e075f
SHA1

37e01575005711550eddcf955ccf0adc2c885ee5
SHA256

d838b792db860a72ef2b9c3dcd96a163773987d8f730d13cd9b755b55f5d9a6d
SHA512

3fa009f095995218008eb85a80e1163fc35eb42f50cd72855ddcc9fd8b8bc4195b9c23f81f47fd36dc3df9959ce61c467ee424781574f616374a3c931bc499be
SSDEEP

6144:olOlQCOPttH/EGzTzwqV9I39vxx/DOTi7c:zQCOlZ/l/FV9I39pxA

Score

N/A

Malware Config

Signatures

Files

d838b792db860a72ef2b9c3dcd96a163773987d8f730d13cd9b755b55f5d9a6d
.exe windows x86

85cf2ec9ded1f3667ba2c69d945192f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
CreateIoCompletionPort
CreateThread
GetCurrentProcessId
GetCurrentThread
GetModuleFileNameA
GetModuleHandleA
GetThreadLocale
GetVersionExW
GetWindowsDirectoryA
LoadLibraryA
LoadLibraryW
LocalReAlloc
MulDiv
MultiByteToWideChar
ResumeThread
Sleep
TerminateThread
WriteFile
lstrcmpA

user32

CascadeWindows
CharNextA
CharNextW
CheckDlgButton
ClientToScreen
CopyRect
CreatePopupMenu
DestroyIcon
DestroyMenu
EndDialog
GetClientRect
InflateRect
ModifyMenuW
OffsetRect
RegisterClassExW
SendDlgItemMessageW
SendMessageTimeoutW
SetMenuItemInfoW
SystemParametersInfoW

Sections

.text
Size: 209KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ