39cca3c7e285f662afdb8776268ed9ec1c617602b505383f0e6c1e6a1d2f94ab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39cca3c7e285f662afdb8776268ed9ec1c617602b505383f0e6c1e6a1d2f94ab
Size

69KB
MD5

3d3b74eba937040a1029c8dfa97845d0
SHA1

7069fee467f376f983756a2aa9abf2e4b628b1f5
SHA256

39cca3c7e285f662afdb8776268ed9ec1c617602b505383f0e6c1e6a1d2f94ab
SHA512

ef778b94de56b1b3df4a3265b368ac07d22cfdc12639c633d9d6ff31a0cbc57ba70226839c796d9870e6fe5fb994470018b6e44a0410cbe775b55b249225a2d1
SSDEEP

1536:2LTtxjKg9EL+lTe0e54EkJsk7TdAJM511+UYir:2LTtx+g9EkTeRJkJsGeJMmur

Score

N/A

Malware Config

Signatures

Files

39cca3c7e285f662afdb8776268ed9ec1c617602b505383f0e6c1e6a1d2f94ab
.exe windows x86

84dafa11fc2fd63cbd9ff8217fe1d20c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeProcess
InterlockedIncrement
GetDiskFreeSpaceW
GetStringTypeW
GetModuleHandleW
WaitForSingleObject
GetACP
ExitProcess
FindResourceW
GetDiskFreeSpaceW
LoadLibraryA
GetCurrentDirectoryA
GetPrivateProfileIntA
lstrcpyW
SetEnvironmentVariableA
WriteFileEx
lstrcmpA
VirtualAllocEx
GetPrivateProfileIntA
Heap32First
GetLongPathNameA
GetPrivateProfileSectionA
InterlockedDecrement

apphelp

ApphelpCheckExe
SdbCreateMsiTransformFile
AllowPermLayer
ApphelpCheckIME

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dbg
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE