ddef2ffd3ac500571b5bb0c291f97304756d56adacd82bd3da968ac74e219c7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ddef2ffd3ac500571b5bb0c291f97304756d56adacd82bd3da968ac74e219c7c
Size

96KB
MD5

7a821c8e342f03d027618663d9879abc
SHA1

36f56100d9bbb974e06086ed842750c3e587bdd0
SHA256

ddef2ffd3ac500571b5bb0c291f97304756d56adacd82bd3da968ac74e219c7c
SHA512

aca53326c1ff0373bf607c2861b5b3e0c9c3734106d035958ad41ed4a9b6b009358565d62c3589cd17f30b5a5fc0524bed705b4b6864776ed7178014ca136463
SSDEEP

1536:fw/RQD/f/9yFC0esvAsBdwq1kUvidc5yZ00igr/InFzBVSQDG4cgrKNL:YCzT9ULoq1kUvO/Z0dUY1nm45G

Score

N/A

Malware Config

Signatures

Files

ddef2ffd3ac500571b5bb0c291f97304756d56adacd82bd3da968ac74e219c7c
.exe windows x86

d5e4e8733acaf37a8c3cf0c96fe7f9e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_wgetcwd
__set_app_type
memcpy
_XcptFilter
_controlfp
_i64toa
vfwprintf
_except_handler3
_acmdln
_exit
fwscanf
__getmainargs
_mbsset
_ismbchira
is_wctype
exit
__p__commode
_initterm
_wcsncoll
__p__fmode
_adjust_fdiv
_ismbclower
_memccpy
strncat
_safe_fdiv
__setusermatherr

kernel32

CreateFileA
IsValidCodePage
OpenEventA
GetModuleHandleA
GlobalMemoryStatus
GetExitCodeThread
LockResource
GetLocaleInfoA
WaitForSingleObject
SearchPathA
GetStartupInfoA
GetVersion

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ