fcd318963a0fea41490fe299c72e8deabe7c80fc1545999f2ca33b35b80be28f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fcd318963a0fea41490fe299c72e8deabe7c80fc1545999f2ca33b35b80be28f
Size

192KB
MD5

13d31a029c7fa5d494f9d0565d98a463
SHA1

fe6e5728e872bf62f79df39064298c9d4c58f1af
SHA256

fcd318963a0fea41490fe299c72e8deabe7c80fc1545999f2ca33b35b80be28f
SHA512

c3708fd91c76b64b43df44d7782c12c82f256be1b244b729dd5ade6917750f1a4f6f19193c45303517ccac666f4274ece922993b5b2b3e5cd508a55ff4132b24
SSDEEP

3072:0Wv6oCXfiIIePvpuMtz3I/YnZdlXGyt6qMezVj8JpUZBqWOPckRay3Rdli:0ZXf/Ttz7Zn+el8zUj20Axi

Score

N/A

Malware Config

Signatures

Files

fcd318963a0fea41490fe299c72e8deabe7c80fc1545999f2ca33b35b80be28f
.exe windows x86

756f710355eb83d8e3cad54c2091e539

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
LockResource
SizeofResource
LoadResource
FindResourceA
GetVersionExA
CreateThread
GetProcAddress
LoadLibraryA
FindFirstFileA
WaitForSingleObject
SetHandleCount
GetEnvironmentStringsW
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
VirtualAlloc
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
MultiByteToWideChar
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc

user32

DialogBoxParamA
KillTimer
MessageBoxA
EndDialog
SetTimer

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 168KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ