bb9877f691297f500c710d074ddf3955fb0571f596c4e7f7aee861c26017fdf1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb9877f691297f500c710d074ddf3955fb0571f596c4e7f7aee861c26017fdf1
Size

336KB
MD5

684ab2cf598ba11e6b2d78fbe3fd568c
SHA1

f586f4bd1b35b979616785d89147c0c42b0d55b8
SHA256

bb9877f691297f500c710d074ddf3955fb0571f596c4e7f7aee861c26017fdf1
SHA512

7dfc5ce0380bb877dd98ae765b68f33f5d16d24bf84c6ea13da53943a29685c86340f0b3dd30983fe542aa8619d42bb9cd5f7e39a57047a5e43880936551e662
SSDEEP

6144:GjUISfkZUutOZVthZeKmviLU5sDuMiMo01GLmaJtIHZrqRHuxYK91X:GwILaRZ9ZeKMiAOZeiGLvSZ4HY91X

Score

N/A

Malware Config

Signatures

Files

bb9877f691297f500c710d074ddf3955fb0571f596c4e7f7aee861c26017fdf1
.exe windows x86

0972a36ebdd54a43913ac3cc1d6845c0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
GetCurrentProcess
LCMapStringA
CloseHandle
LoadLibraryA
CreateFileA
ExitProcess

user32

CharLowerBuffA
CreateWindowExA
SetWindowLongA
CloseWindow
wsprintfA

advapi32

RegEnumValueA
RegDeleteKeyA
RegCloseKey
RegCreateKeyA
RegSetValueA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegDeleteValueA

Sections

.text
Size: 251KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ