bff042394fe2efafdd4aa3cd1cf58a0cf02bf7bd1660f36487fd92b41fc0e6e5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bff042394fe2efafdd4aa3cd1cf58a0cf02bf7bd1660f36487fd92b41fc0e6e5
Size

37KB
MD5

fd77ea755142fec3bb50f3d6e99db966
SHA1

22bc17fb31f20aeeeb315402ad3055d50cd99930
SHA256

bff042394fe2efafdd4aa3cd1cf58a0cf02bf7bd1660f36487fd92b41fc0e6e5
SHA512

ba8235da8a95f6600792ac9f93373b685db83140289d75190d563176316f7c305596f731b69efaceb358722a6cdf4d1473b72ab4bf024120e07f3e0def71ca6a
SSDEEP

768:UcO0R/QmZU7iJ14PmH0Vk7sFCmmGOsC8qQS8QPd+J:TOw/QmZU7iJ2mylFCmmrsKPd+J

Score

N/A

Malware Config

Signatures

Files

bff042394fe2efafdd4aa3cd1cf58a0cf02bf7bd1660f36487fd92b41fc0e6e5
.exe windows x86

364f814dd6e8c78d7cdce46e7892987e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ToAscii
ShowWindow
ShowCursor
OffsetRect
EnableScrollBar
CreateCursor
CopyImage
CharNextA

kernel32

FindResourceA
FreeResource
lstrcmpA
CompareStringA

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueA

Sections

.text
Size: 13KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 945B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 23KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ