c0225d874f1397335fc986808d7ae39a8a47c459a6071a9b79e2bac7808dd500 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c0225d874f1397335fc986808d7ae39a8a47c459a6071a9b79e2bac7808dd500
Size

244KB
MD5

0c78fdde8eef7502a7a6db06269c026d
SHA1

2b84bfab3db98f9117aeabf819aff0138be27e7b
SHA256

c0225d874f1397335fc986808d7ae39a8a47c459a6071a9b79e2bac7808dd500
SHA512

b5cfa0b8e69312b38ef420009a68c9444002be6125883a932d64196df5889dd5d0e405f45e8ffed33741b70838ddb344e5fef2a9ade3f80b228dec6a4eb95893
SSDEEP

3072:4l6FSL4BUaxSro9ss/mfeApR6DQrM2uec9dQTawSTQ9yfzpwW5QdvsZFWfR:4lQSL8xDNZQluR9gank9y9UGWfR

Score

N/A

Malware Config

Signatures

Files

c0225d874f1397335fc986808d7ae39a8a47c459a6071a9b79e2bac7808dd500
.exe windows x86

fa5f50019e1a7f98dad3718684e43c37

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileA
FlushFileBuffers
SetEnvironmentVariableA
CompareStringW
GetTimeZoneInformation
GetSystemTime
GetLocalTime
WideCharToMultiByte
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapAlloc
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
GetLastError
SetFilePointer
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
SetStdHandle
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
CompareStringA
CloseHandle

advapi32

RegOpenKeyExA
RegCloseKey

shlwapi

PathFileExistsA
SHDeleteKeyA

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 212KB - Virtual size: 212KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE