331b28c02b31001493ff3515e7f1cde20abfc16455ebdb9b5ee48620c8baa141 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

331b28c02b31001493ff3515e7f1cde20abfc16455ebdb9b5ee48620c8baa141
Size

1.5MB
MD5

3fa6c8f9e8940b1b854c0021274a9228
SHA1

1bb7925756c5b08e2b55a648c31e9e6c34e155be
SHA256

331b28c02b31001493ff3515e7f1cde20abfc16455ebdb9b5ee48620c8baa141
SHA512

321652953e82fc856839adb078f5a2cec52212f112b0915a04bf58e30b25f75b99a19a55d8a348adb8e65c53675ce5bec0732981cba20589e0f9fdd97e0b7a48
SSDEEP

49152:zYHoK7VWl9zh5Lbmv/gHESU9SsA23/qMVdntm:kIKyRDXCspU9SsB3/ln8

Score

N/A

Malware Config

Signatures

Files

331b28c02b31001493ff3515e7f1cde20abfc16455ebdb9b5ee48620c8baa141
.exe windows x86

dc3e9eeef8ad505f5955e6c62a3503d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDefaultLangID
GetUserDefaultLCID
GetCurrentThread
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
GetCurrentProcess
GetVersion
GetModuleHandleW
GetSystemDefaultLCID
GetLastError
VirtualAlloc
GetCommandLineW
GetProcAddress
OutputDebugStringA
FlushFileBuffers
GetEnvironmentStringsW
MultiByteToWideChar
WriteFile
InterlockedExchange
lstrlenA
GetSystemInfo
GetTimeZoneInformation
GetEnvironmentStrings
LocalFree

Sections

.text
Size: 349KB - Virtual size: 349KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 766B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ