f8be0cd804734fb48057876fd09656b2d67738a553ebd01433bb21bdf22b5cd7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f8be0cd804734fb48057876fd09656b2d67738a553ebd01433bb21bdf22b5cd7
Size

113KB
MD5

cd05fb4d5315aa5aed46e695e501fb61
SHA1

8a22bf17ea96ac541fd26e2af154f0e0143799f8
SHA256

f8be0cd804734fb48057876fd09656b2d67738a553ebd01433bb21bdf22b5cd7
SHA512

bd168bea1a0b4f217a5fc6a75ed440f6d656a140e71869c4350b72fcdacb4dea33792e12d2ecbf5c80faca03386a0901aa64a0f42a673666b9436d3187107e86
SSDEEP

1536:LhgGNNGJ43wQwz96/UDNapHdC7xfHJa51IcUw0i/Wrsm7SKzoXI0OiG1RSRKq:LhY+3w76c0UHJw1XHPerspNePScq

Score

N/A

Malware Config

Signatures

Files

f8be0cd804734fb48057876fd09656b2d67738a553ebd01433bb21bdf22b5cd7
.exe windows x86

eaa9dbcaaf6db4dad612338acafc7ce9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetCommandLineW
GetFileType
GetACP
DeleteFileA
Sleep
FreeResource
ExitThread
GetProcAddress
GlobalAlloc
GetModuleHandleA
GetCommandLineA
GetModuleHandleW
LoadLibraryA
LocalAlloc
VirtualAllocEx

Sections

CODE
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ