edfcca6c22fb397424c2665012e6b2a24fc77e25036c4901fc58d81defb1f4d3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

edfcca6c22fb397424c2665012e6b2a24fc77e25036c4901fc58d81defb1f4d3
Size

195KB
MD5

4217a94c4aed0bba526ea77e2b2a3656
SHA1

82acdcc71c96007a77ba86f1e17d7981275de73e
SHA256

edfcca6c22fb397424c2665012e6b2a24fc77e25036c4901fc58d81defb1f4d3
SHA512

cb77139f7ba78ab6ea0d1bcc3e59f82531e4613cbcd764a7ac55fffe57b92af863bfd6fd3626fe1fd02dde73047f6bc0baea9c8d0baa0313bdff60e49232cb0e
SSDEEP

3072:pIPngobQbO/a6BVf1VqhExubaD4yw3Ta6BVf1VqhExubaD4yw37:pUcbqpWKkb44ywjpWKkb44ywL

Score

N/A

Malware Config

Signatures

Files

edfcca6c22fb397424c2665012e6b2a24fc77e25036c4901fc58d81defb1f4d3
.exe windows x86

034a94d5bef2a8b663754b5be75b5138

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

free
__setusermatherr
_XcptFilter
_except_handler3
_adjust_fdiv
atan2
_controlfp
calloc
__set_app_type
__p__fmode
_exit
_initterm
__p___initenv
__p__commode

kernel32

GetWindowsDirectoryA
GetProcessHeap
SetFileTime
GetStartupInfoW
GetEnvironmentVariableA
lstrcmpA
CreateDirectoryA
MoveFileA
SetThreadLocale
GetFileType
CompareStringW
GetCommandLineA
CompareFileTime
InterlockedDecrement
RemoveDirectoryA
WritePrivateProfileStringA
InterlockedExchange
VirtualProtectEx

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 898B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE