6f159e7e1f7597821f0c7b9193438b41e86386123510c48681a0a0665f657715 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6f159e7e1f7597821f0c7b9193438b41e86386123510c48681a0a0665f657715
Size

11KB
MD5

10a3ab252c32cc3ebcebcec5d9887d2e
SHA1

28907b7035776c21552be8462416e543898352d4
SHA256

6f159e7e1f7597821f0c7b9193438b41e86386123510c48681a0a0665f657715
SHA512

7955dbc18b87dd4630d93a87a45655f79f54736feaa2deb68a24658f54100e9ad35f7d84aaca01e84648b54583ee6e30ddcfc8f7ead310ec92b219a0c930cb30
SSDEEP

192:4siz+9yAkbb0ARzhNkE9aEEKiAkumkkNK9jeMdDyfniyMnmAc:4sia4b/hh6ENEykNK9SRviFmX

Score

N/A

Malware Config

Signatures

Files

6f159e7e1f7597821f0c7b9193438b41e86386123510c48681a0a0665f657715
.exe windows x86

c9fe59507eb882c0bf74e8d9cf6c490b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_cexit
exit
__winitenv
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_onexit
__dllonexit
wprintf
printf
_wcsnicmp
free
wcscpy
wcslen
_XcptFilter
_exit
_controlfp
_c_exit
_snwprintf
memset
??2@YAPAXI@Z
_wcsicmp
??3@YAXPAX@Z
malloc
wcschr
memcpy

kernel32

LockResource
GetLastError
CloseHandle
GetModuleHandleA
EnumResourceTypesW
EnumResourceNamesW
GetStdHandle
WriteConsoleW
WriteFile
LocalFree
ReadFile
CreateFileW
FindResourceW
LoadResource
GetFileSize
GetModuleHandleW
MultiByteToWideChar
LoadLibraryExW
SizeofResource
FormatMessageW

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ