e78d41f56fe7e54c01d58418ba7c7e9a56b638376a9541b1bb534c4a9e378c64 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e78d41f56fe7e54c01d58418ba7c7e9a56b638376a9541b1bb534c4a9e378c64
Size

178KB
MD5

52c0ff11fabc0b63284dc5eb5f49cf21
SHA1

8445fb7928dcec949e16972615578604401f25b1
SHA256

e78d41f56fe7e54c01d58418ba7c7e9a56b638376a9541b1bb534c4a9e378c64
SHA512

b3e2e7f4ae58c033963b5e62743ce17abd6aacb4d7da1ce5b28c9f522f44c524f55918790c6fde834b0378617d83df27a6c9cee1b1e6ca43314f75964ea5f39a
SSDEEP

3072:U3lmstEk3rx9Ugf5mOaxPFVWnV1J5N45bqXiyKdve2SlaM2A0Xz3P:UVmG3vUq51aDVWNcdRNuajz

Score

N/A

Malware Config

Signatures

Files

e78d41f56fe7e54c01d58418ba7c7e9a56b638376a9541b1bb534c4a9e378c64
.exe windows x86

b4ea75f88f583ce87965d52c7b5995fe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
CloseHandle
LoadLibraryA
CreateFileA
ExitProcess
GetCurrentProcess
LCMapStringA

user32

CharLowerBuffA
wsprintfA
CreateWindowExA
SetWindowLongA
CloseWindow

advapi32

RegDeleteKeyA
RegSetValueA
RegDeleteValueA
RegEnumValueA
RegCreateKeyA
RegCloseKey
RegOpenKeyA
RegEnumKeyA
RegQueryValueA

Sections

.text
Size: 139KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ