dbee5eb62d8f14465823a36a32230f422f1887a85c4f69c204f76941748a967f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dbee5eb62d8f14465823a36a32230f422f1887a85c4f69c204f76941748a967f
Size

73KB
MD5

576fe59dfec2eb1de4515e107b70df75
SHA1

a90310f47ae5673d2044e22c692117595900a156
SHA256

dbee5eb62d8f14465823a36a32230f422f1887a85c4f69c204f76941748a967f
SHA512

11f0f180b22db6e05e807952d96ebd05ed0905942a53d0436a7c981ddeb5494e1a649ffe643aca1041eec801f459cac41a75384dca21152b4c1658098bb74e82
SSDEEP

1536:IBtZ/MN543PsHuMNJaW+e1FelNl0KYWs7DGqc/ql+hOUw8Ly5z:IBYN5efQJaeefl0KYWGGqcylsuV

Score

N/A

Malware Config

Signatures

Files

dbee5eb62d8f14465823a36a32230f422f1887a85c4f69c204f76941748a967f
.exe windows x86

195f38822b2238709d6deac29722feff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadLocale
lstrcmpiW
UnhandledExceptionFilter
GetLastError
GetTempPathA
SetStdHandle
IsDBCSLeadByte
DeleteFileA
GetTimeZoneInformation
LoadResource
GetEnvironmentStrings
InterlockedCompareExchange
GetModuleHandleW
VirtualProtect
GetExitCodeProcess
GetModuleHandleA
SizeofResource
lstrlenA
GetShortPathNameA
RtlUnwind
GlobalFree
GetFileType
CreateProcessA
InterlockedExchange
GetFullPathNameA
GetUserDefaultLCID

msvcrt

__p__commode
__set_app_type
_exit
_XcptFilter
_controlfp
__setusermatherr
__getmainargs
__p___initenv
_initterm
_adjust_fdiv
__p__fmode
_except_handler3

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ