55461786c498d3aa1f164cb56198625994daea5c97b2c5b77fcbaf132e4a55eb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55461786c498d3aa1f164cb56198625994daea5c97b2c5b77fcbaf132e4a55eb
Size

121KB
MD5

6788d034fd5f9df6222b72e1d5d2178f
SHA1

43233a57dc7aa9f16fb645b38572ec30f3390294
SHA256

55461786c498d3aa1f164cb56198625994daea5c97b2c5b77fcbaf132e4a55eb
SHA512

6cffe7a36c91e8f318aa25bc2bc720fec3efbe0c0053e424b6f5a43bfd44f27217be4d803ad2d286cbbf783795922544e7d89885bf6518961cc219d1494224e8
SSDEEP

1536:yYX6DpIoXq0ca2r7MclGV9ExclPQ70w7f8L/SczQFyA0MR2pvsmezu9Nis/7Ru6C:yI6qoq0cawU96clNMc+F8KVzu1FNw

Score

N/A

Malware Config

Signatures

Files

55461786c498d3aa1f164cb56198625994daea5c97b2c5b77fcbaf132e4a55eb
.exe windows x86

91d6bd110e2c2a1ad567967ce510239e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDiskFreeSpaceW
WaitForSingleObject
GetACP
GetPrivateProfileSectionA
GetPrivateProfileIntA
lstrcmpA
GetModuleHandleW
WriteFileEx
GetLongPathNameA
SetEnvironmentVariableA
Heap32First
ExitProcess
VirtualAllocEx
FindResourceW
GetStringTypeW
lstrcpyW
LoadLibraryA
InterlockedDecrement
GetExitCodeProcess
GetCurrentDirectoryA
GetPrivateProfileIntA
GetDiskFreeSpaceW
InterlockedIncrement

apphelp

AllowPermLayer
SdbCreateMsiTransformFile
ApphelpCheckExe
ApphelpCheckIME

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dbg
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE