edd7426864ed405c02181e8ce89b5b01fd9c35bb9451451281493e2d77dbd687 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

edd7426864ed405c02181e8ce89b5b01fd9c35bb9451451281493e2d77dbd687
Size

221KB
MD5

fd741a282c3063c0e5986da5380c8c44
SHA1

063e41062d6af5f41c37f8c508019817d7c3bf88
SHA256

edd7426864ed405c02181e8ce89b5b01fd9c35bb9451451281493e2d77dbd687
SHA512

6bf572b361324cde9cd90e7d3bc6330c3546c729a640ea7f3832dc18e1516d075832fb2a3d360bf1f2d22ccfc01b8fe45f02ee692a3c87f67967429a408fad56
SSDEEP

3072:iTYNW+8xqOLx/tP8KvyA5y7A7erDV73M6vuOqFo54NP8eK+l8J7eo5tj6pi:FH8xBLxVPW387MlmFs4NP8eK+KJ6oupi

Score

N/A

Malware Config

Signatures

Files

edd7426864ed405c02181e8ce89b5b01fd9c35bb9451451281493e2d77dbd687
.exe windows x86

9a033b23e8b95dc182cc53c1956e2fb3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
GetCurrentProcess
CreateFileA
LCMapStringA
LoadLibraryA
CloseHandle
ExitProcess

user32

wsprintfA
CharLowerBuffA
CreateWindowExA
CloseWindow
SetWindowLongA

advapi32

RegEnumKeyA
RegEnumValueA
RegQueryValueA
RegCloseKey
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyA
RegSetValueA
RegOpenKeyA

Sections

.text
Size: 155KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ