d8c43eaa3f9a55b514114e9eaf701f170a0a018fcbf16c15235f872a81275e8b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d8c43eaa3f9a55b514114e9eaf701f170a0a018fcbf16c15235f872a81275e8b
Size

32KB
MD5

17289fecb399ba485028d732c5a88f80
SHA1

f2d8a21407259e3ba0b0a28f2c9274980e4632bd
SHA256

d8c43eaa3f9a55b514114e9eaf701f170a0a018fcbf16c15235f872a81275e8b
SHA512

a5ebfb5b0af2f063f8ce871847c1c1fb63b45e1dc6885af0e047bb3b26ac24b5881f4268f1609e46fc58bb2af8941aa157af438a47b46b94f13d7a9fbe0e7f32
SSDEEP

192:r7A94LMglY/truS31P0wQZJYs4hHHIPL/og9yYajYsGngtsSQ9Eg6nBhT5taNF3M:raIMgW0wQfT4NoBI+pEg+BhTPQERIG

Score

N/A

Malware Config

Signatures

Files

d8c43eaa3f9a55b514114e9eaf701f170a0a018fcbf16c15235f872a81275e8b
.exe windows x86

816cda0caca0b3467bc402390e44d318

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
CreateDirectoryA
FindClose
lstrcatA
lstrcmpW
FindNextFileA
GetLastError
GetCurrentThreadId
lstrlenA
FindFirstFileA
lstrcmpA
InterlockedCompareExchange
ExitProcess
LocalFree
FormatMessageA
GetModuleHandleA
ReadFile
CreateFileA
VirtualAlloc

user32

IsWindow
GetActiveWindow
GetDesktopWindow
SetWindowTextA
UnregisterClassA
ShowWindow
DispatchMessageA
SendMessageA
CreateWindowExA
PeekMessageA
IsWindowVisible
EndDialog
PostQuitMessage
PostMessageA
SetFocus
IsWindowEnabled
MessageBoxA
wsprintfA

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 990B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ