cde052b873799d745f4b620f1a93c1298bb6fa0e0703a62d2d790ab37193a9e0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cde052b873799d745f4b620f1a93c1298bb6fa0e0703a62d2d790ab37193a9e0
Size

208KB
MD5

98a1e3b8c85e246561d254fe6d21c9a1
SHA1

b2df7e7c91766c1122b48621f611e52233b0a3ae
SHA256

cde052b873799d745f4b620f1a93c1298bb6fa0e0703a62d2d790ab37193a9e0
SHA512

09590d1d139ff7049737c5db31285c5cf28bcfbc78693a67075ffe3b56f5f11c1253ba300f857177c5f58a609bc4de7b8cdf40c4cb87168c8f899d88e1797ed8
SSDEEP

6144:c2HpTjJC1v+z1FqOmCXaxkojy1B46R9e:xtjJCp+z1FTmCXRoj

Score

N/A

Malware Config

Signatures

Files

cde052b873799d745f4b620f1a93c1298bb6fa0e0703a62d2d790ab37193a9e0
.dll windows x86

fb80b577eec61d576561a1fb3cd53b9d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
GetCommandLineA
VirtualFree
HeapFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
RtlUnwind

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ