c82416d39d3255ce639e7a53caa9c981eade75eec50557a0d8a130d02f59f970 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c82416d39d3255ce639e7a53caa9c981eade75eec50557a0d8a130d02f59f970
Size

27KB
MD5

538dab30f3ab8f08fb4a7f5ec7740330
SHA1

266260c53cf2bc2e46165675a88d9438f51e8512
SHA256

c82416d39d3255ce639e7a53caa9c981eade75eec50557a0d8a130d02f59f970
SHA512

8cb04affc9db4d0f07d9d393e2cc12c88d0698508414435846d5f0e1a47acf45fbe55aa39b33bfec137433949c1f19f2a02efb264933dad632da3820bc28475f
SSDEEP

768:KbYrcLV06qDhn8QTrq6lfieOp2hD4lwhy5:KbYrMV06U9HT26IpU/

Score

N/A

Malware Config

Signatures

Files

c82416d39d3255ce639e7a53caa9c981eade75eec50557a0d8a130d02f59f970
.exe windows x86

9304e30be1d824f082e270c6d410ac56

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateEventW
CreateFileW
DeleteCriticalSection
DisableThreadLibraryCalls
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentThreadId
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
HeapDestroy
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
LocalAlloc
LocalFree
MultiByteToWideChar
SetLastError
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
lstrcmpiW
lstrlenA

Sections

.text
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE