bc57b677749c28014c709dec664b36852db93897355ae6007f2af07e93c340fb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc57b677749c28014c709dec664b36852db93897355ae6007f2af07e93c340fb
Size

53KB
MD5

aa7e5164b01e2d8b8f28cf243dc59a8f
SHA1

67b38551b1b4b5c22fbc184306b86baa441401d1
SHA256

bc57b677749c28014c709dec664b36852db93897355ae6007f2af07e93c340fb
SHA512

b5ca30c0ae5849bcf5e299714c57af909509c78308a38164e31c6ea3ad68f60499e79765fa6854dd10554280a5e2cc4e733f7fe322b7c7c293246742f99c95ef
SSDEEP

768:p3lrPxlT3w0XtLn9vhycT0huD1z0fcV2Vh4Xf0VJrci1zEziqygT12Qicw2FdPEn:zPT3wc9nBhyFgJIfcGhQAJrciREzBPEn

Score

N/A

Malware Config

Signatures

Files

bc57b677749c28014c709dec664b36852db93897355ae6007f2af07e93c340fb
.exe windows x86

ed40cb110885278c000215d59af22e43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHGetValueA

kernel32

ResumeThread
DeleteFileA
HeapAlloc
GetProcessHeap
ReadFile
LocalFree
LocalAlloc
MultiByteToWideChar
CopyFileA
GetModuleFileNameA
GetShortPathNameA
ExitProcess
GetExitCodeProcess
WaitForSingleObject
GetTempPathA
VirtualAlloc
CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTempFileNameA
SetFilePointer

ole32

CoCreateInstance
CoInitialize
CoUninitialize

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 676B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ