ebcdbdc62422336e97e169442f1289a513647621f50e5119dd124cefa0d7a36b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebcdbdc62422336e97e169442f1289a513647621f50e5119dd124cefa0d7a36b
Size

1.2MB
MD5

93b21a01a55dd2b253ce4958ce3f02f7
SHA1

a9a32e38c18be4770fdc40eb63d5666646b6e022
SHA256

ebcdbdc62422336e97e169442f1289a513647621f50e5119dd124cefa0d7a36b
SHA512

68c3f56db55c62677cd1ed039d10dd14327c42ab4bd83b583522b8459aa120a3932d310fbd1f4bd9e5cc3cb3ce27424b314970c6d7e6f491d57184b6efc1c290
SSDEEP

24576:pv+FpPnzcwW4COi/X2ojIWYQpoHgytSPH7OQ6RaGOsX/EOrhw9MicA5fQY0cC5:abc7b/Gij6AHHG2OBi1QY09

Score

N/A

Malware Config

Signatures

Files

ebcdbdc62422336e97e169442f1289a513647621f50e5119dd124cefa0d7a36b
.exe windows x86

c1204e1f163542a350a342a23d23f9e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
HeapAlloc
GetProcessHeap
VirtualAlloc
VirtualProtect
VirtualFree
LoadLibraryA
IsBadReadPtr
HeapFree
FreeLibrary
CloseHandle
CreateProcessA
WriteFile
CreateFileA
Sleep
GetCommandLineA
GetStartupInfoA
ExitProcess
GetModuleHandleA

user32

MessageBoxA

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE