edfbba0cdd43f68bde3be675f7478b200abd552ba69914dc30ef1ba6292aaba6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

edfbba0cdd43f68bde3be675f7478b200abd552ba69914dc30ef1ba6292aaba6
Size

126KB
MD5

6047078ecf523ca70188a5bc0806a90b
SHA1

2d49cb16dc428b8e6a477338b70c75cbc805625e
SHA256

edfbba0cdd43f68bde3be675f7478b200abd552ba69914dc30ef1ba6292aaba6
SHA512

fb54c2446566945a4cd19d94a976e7f6076d9e9b204da2fafcd6bdfb2f203758dda5ac45a2187f32f01fb559959b6d173b458156ddc5594b40972b1547fb7cdc
SSDEEP

3072:Tq+jtEd4IqPlIUfF/mjkuVZPRuTgus8Jai:TGlqPyCI4uVZPR4Z

Score

N/A

Malware Config

Signatures

Files

edfbba0cdd43f68bde3be675f7478b200abd552ba69914dc30ef1ba6292aaba6
.exe windows x86

a9128271a3c71435b1aa468c3c77908a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
__setusermatherr
__set_app_type
__p__fmode
free
__getmainargs
_adjust_fdiv
__p___initenv
calloc
_initterm
_exit
_except_handler3
_controlfp
_XcptFilter

kernel32

GetCommandLineW
GetTimeZoneInformation
WritePrivateProfileStringA
GetProcAddress
GetProcessHeap
IsBadCodePtr
GetTempFileNameA
GetStartupInfoW
GetStringTypeExA
VirtualProtectEx
GetModuleHandleW
IsBadReadPtr
SetCurrentDirectoryA
LocalFree
GlobalFree

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ