e97dffab0d716394ccdaf37b89fa169be928d9ca534ab692db3d58d687e9f807 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e97dffab0d716394ccdaf37b89fa169be928d9ca534ab692db3d58d687e9f807
Size

22KB
MD5

61b565f37b8157da7ae052e8806c4064
SHA1

266be85f8df4805d98bfd8cdcd0f3963a6719df3
SHA256

e97dffab0d716394ccdaf37b89fa169be928d9ca534ab692db3d58d687e9f807
SHA512

6d71bed65d72f7691108ac862f30fec9d9a05bb52326b024e385e515bbb5414c2852be08a99193bdeb1cebf3ef5a66db6572fac61cef7be8989af92d88b9d76e
SSDEEP

384:QTb4ZcgNTDVM9LcVmjJDv+zsYoQGso7NJVXcKlOxJFUr:3ZcwVK51v6NoTs+y

Score

N/A

Malware Config

Signatures

Files

e97dffab0d716394ccdaf37b89fa169be928d9ca534ab692db3d58d687e9f807
.exe windows x86

ebc0e4952544fda2469dd1c8c7424ffe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lclose
CopyFileA
CreateMutexA
CreateThread
DeleteFileA
ExitProcess
FindClose
FindFirstFileA
FindNextFileA
GetCurrentDirectoryA
GetCurrentProcess
GetDriveTypeA
GetFileInformationByHandle
GetFileTime
GetLastError
GetModuleFileNameA
GetProcAddress
GetProcessTimes
GetSystemDirectoryA
GetSystemTimeAsFileTime
GetTickCount
GlobalMemoryStatus
LoadLibraryA
OpenFile
ReadFile
ReleaseMutex
SetCurrentDirectoryA
SetErrorMode
SetFileAttributesA
SetFilePointer
Sleep
TerminateProcess
WriteFile

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegSetValueExA

shell32

ShellExecuteA
ShellExecuteExA

Sections

.rhzki
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE