f131153b1ab0a6c377d41d7c47ae41d208a3eef35f6c2270e40ba6b38f0e2532 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f131153b1ab0a6c377d41d7c47ae41d208a3eef35f6c2270e40ba6b38f0e2532
Size

23KB
MD5

50266ccd589751c87c0c781c0e600257
SHA1

a63b3818efee4e4db73c982de140a319bf776871
SHA256

f131153b1ab0a6c377d41d7c47ae41d208a3eef35f6c2270e40ba6b38f0e2532
SHA512

a7df7e0d3a3bdad0d4d5ee6cd3c2ebc0cb405fc9b7d65f8c75bb1fcc99e41e271c0eaafb3c4363fb1448f1f9f2024470ed732fea4dc896cb6f4f8f1f74b1691f
SSDEEP

384:P5rIvhL9Q3+8QV6QFWf/VCWEmdPGFQ273eLXVBYkkjuv1hkNLdbaLa4CwUJuUCS7:RsvhJYM6J9p5YEVBxkjuv7wbaLa4PU4S

Score

N/A

Malware Config

Signatures

Files

f131153b1ab0a6c377d41d7c47ae41d208a3eef35f6c2270e40ba6b38f0e2532
.exe windows x86

99cbd7a1fd5ff0780801872625e294ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetCurrentThreadId
CreateThread
GetSystemDirectoryA
ExitProcess
GetLastError
CreateMutexA
lstrcmpiA
lstrcatA
GetModuleFileNameA
FreeLibrary
GetProcAddress
LoadLibraryA
GetCurrentProcessId
SetFileAttributesA
DeleteFileA
lstrcpyA
GetTickCount
CreateToolhelp32Snapshot

user32

wsprintfA
PostThreadMessageA
GetMessageA
TranslateMessage
DispatchMessageA

msvcrt

atoi
fopen
fgets
strrchr
_itoa

Sections

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ