d74420d6b98ae86fe6ff84bcf89cb9382b26304bc0f845225f52470c04aba6d9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d74420d6b98ae86fe6ff84bcf89cb9382b26304bc0f845225f52470c04aba6d9
Size

168KB
MD5

69215c2a2386b94c4b8ddbe608bc1b43
SHA1

6650fff057d62795e60a3c5cc3d0348c722834d2
SHA256

d74420d6b98ae86fe6ff84bcf89cb9382b26304bc0f845225f52470c04aba6d9
SHA512

7fde5a818ac961f8007e22add9095431e4bc5cd845d6c3ac4df4495a4a3bdf1bac6b0234c6f6585e2a3d26b8c38703dba6be040b2a24a21ca6c92c7eb4f55cfd
SSDEEP

3072:89aHOh78XuH8OsZGFjdl9/cWo4J/qATGX1OJMQNo9697oH3og:vHO78XuH8OoGBd0WRFqAT21OJDo6poHN

Score

N/A

Malware Config

Signatures

Files

d74420d6b98ae86fe6ff84bcf89cb9382b26304bc0f845225f52470c04aba6d9
.exe windows x86

d08c5d4dd469bcedaa784312d4f5fb5e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
LoadLibraryA
CloseHandle
CreateFileA
LCMapStringA
ExitProcess
GetCurrentProcess

user32

SetWindowLongA
wsprintfA
CloseWindow
CharLowerBuffA
CreateWindowExA

advapi32

RegCloseKey
RegSetValueA
RegQueryValueA
RegDeleteKeyA
RegEnumValueA
RegCreateKeyA
RegEnumKeyA
RegDeleteValueA
RegOpenKeyA

Sections

.text
Size: 149KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ