ca8714db56062e7e46afdda9d00dd4ee45d631e5756872b3c3262803d49e8e8a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ca8714db56062e7e46afdda9d00dd4ee45d631e5756872b3c3262803d49e8e8a
Size

187KB
MD5

2ed71413b3fbe9ee54970b2af1f39cd0
SHA1

e57bf81f6f34934b84e171b0cda146d11b84f169
SHA256

ca8714db56062e7e46afdda9d00dd4ee45d631e5756872b3c3262803d49e8e8a
SHA512

26f8cd1e636300bd98757024095d4a81d4963e3dd0aec83909120a8fbe260c5a9913a4779e40ce3e13bb2564c87e79d605717ac4b53f409f07ba375b1532f7f0
SSDEEP

3072:hSWRidnb+FYE6EVSYbfKOZC5hXx34qmd78/JnWqYmMUWXtwpY5ArramM:lRgyYEZVSYLB4he78/JnWqN5cYY56

Score

N/A

Malware Config

Signatures

Files

ca8714db56062e7e46afdda9d00dd4ee45d631e5756872b3c3262803d49e8e8a
.exe windows x86

3a096c80d92beb8142b114a455a7858e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetShortPathNameW
TerminateProcess
GetProcessShutdownParameters
GetModuleFileNameA
GetProcAddress
VirtualAlloc
HeapReAlloc
WriteConsoleW
CreateSemaphoreW
GetSystemTimeAsFileTime
GetCurrentProcessId
HeapAlloc
lstrcat
GetCurrentThreadId
GetCurrentProcess
GetModuleHandleA
CreateNamedPipeA
EnumCalendarInfoExW
WriteFileEx
InterlockedExchange
RtlUnwind
CreateFileA
QueryPerformanceCounter
VirtualQuery
CompareFileTime
OpenEventW
InterlockedIncrement
ReadConsoleOutputCharacterA
FindFirstFileExA
ExitProcess
GetTickCount
CreateMailslotA
UnlockFileEx
HeapFree
LoadLibraryA

gdi32

GetGlyphOutline
PlayMetaFileRecord
CreateBitmap
SetBitmapDimensionEx
UpdateColors
SetTextAlign
TextOutA
CreatePolygonRgn

Sections

.text
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ