e5e01604e967f83e04260a3af4d3cea52a8a5519109743341d0af3924bfecef9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e5e01604e967f83e04260a3af4d3cea52a8a5519109743341d0af3924bfecef9
Size

72KB
MD5

83f4015c0c9a2f7f32be12cfd62a764d
SHA1

91409a497cf57ccce6eafe8599f3ddbd8d58aa68
SHA256

e5e01604e967f83e04260a3af4d3cea52a8a5519109743341d0af3924bfecef9
SHA512

f5b3ef14c8f087453a1221ad76e940da1e5c93956a23925fe03c99c30737d5ff6bfc5d2339889f9f65a8495764e2b2226dfa5f0c626dd909bb612b0359805a0c
SSDEEP

1536:dpdwGGGpGGGUGGg3RF5l3X2aKicpzRhiE4YgqyHt35UJUquACpOrtSQ:lGhQP4OyLUJU7ACp0t

Score

N/A

Malware Config

Signatures

Files

e5e01604e967f83e04260a3af4d3cea52a8a5519109743341d0af3924bfecef9
.exe windows x86

cb4dfdd699709b67c25a1638f861fd06

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SizeofResource
MoveFileA
FreeEnvironmentStringsA
GetSystemDirectoryA
FileTimeToSystemTime
CopyFileA
GlobalAlloc
GetModuleHandleW
DeleteFileA
GetModuleHandleA
GetThreadLocale
GetCurrentDirectoryA
lstrcpyA
VirtualProtect
GetDriveTypeA
GetCurrentProcess
GetStringTypeW
GetFileType
GetExitCodeProcess
RaiseException
IsBadCodePtr
GetEnvironmentVariableA
ExpandEnvironmentStringsA
LoadResource
RemoveDirectoryA
MultiByteToWideChar
GetStartupInfoA
GetTempPathA
MulDiv

msvcrt

__getmainargs
__p__fmode
_except_handler3
__p___initenv
_adjust_fdiv
__setusermatherr
_controlfp
_exit
_XcptFilter
__set_app_type
__p__commode
_initterm

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ