95e20f2db088956a4858d517abb10c9bfcd474ed056a77233d504a36204954d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

95e20f2db088956a4858d517abb10c9bfcd474ed056a77233d504a36204954d2
Size

682KB
MD5

c30e31306e976dca8882024a57cbba03
SHA1

1465070d92a17fa29a33e6f786dfa1ba5e9bd722
SHA256

95e20f2db088956a4858d517abb10c9bfcd474ed056a77233d504a36204954d2
SHA512

0967c7bdb06cdd3607ad2ca54298445471e2214d8ee704abd1bf3887982c74ef30ab20a7b9a0ac38804d647cbcb615aaa247ac9c38ba00def1846f3934d2d950
SSDEEP

12288:KUKMgLdDLxf33nmrzWcQeuEXoh1ccz/gpjnPXdAtXp1yY:KUKbLdZWEJGYccz/mbFIuY

Score

N/A

Malware Config

Signatures

Files

95e20f2db088956a4858d517abb10c9bfcd474ed056a77233d504a36204954d2
.exe windows x86

13d7560eb27c7d7a6fd3e356710688bc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenProcess
GetCurrentProcessId
lstrcmpA
MulDiv
LocalFree
Sleep
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
TerminateThread
WaitForSingleObject
CreateThread
CloseHandle
GetLocaleInfoA
LeaveCriticalSection
EnterCriticalSection
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
HeapAlloc
GetProcessHeap
HeapFree
EnumCalendarInfoExA
GetCommProperties

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 652KB - Virtual size: 649KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ