979e625a3c2a88aaa9f9d81c252333cfcdf8d7cf24a69d16c1248bcc3f57df10 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

979e625a3c2a88aaa9f9d81c252333cfcdf8d7cf24a69d16c1248bcc3f57df10
Size

20KB
MD5

0719c6e447e5594b6c580642fa26d98f
SHA1

1349dc8442c723cf9be5dd548a36b4d6ad5ed90e
SHA256

979e625a3c2a88aaa9f9d81c252333cfcdf8d7cf24a69d16c1248bcc3f57df10
SHA512

8ac1118376ada4009ffebc276d9e7e4944df1c64e361a8b7b49d8d6a53623b0128bffffe95cca3724f906b95134652a3ff30b011464bf2e0239613c2d269035f
SSDEEP

96:qNQWsy4ZlW8pvVTG2KD182BOZL0JJKwJfbWIt/6XidCT6VO:wQ3W87SR82tKaWItCSM6g

Score

N/A

Malware Config

Signatures

Files

979e625a3c2a88aaa9f9d81c252333cfcdf8d7cf24a69d16c1248bcc3f57df10
.dll windows x86

533b327ddf5687a9f12b042a250aab26

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
_adjust_fdiv
_initterm
free
strstr
sprintf
wcscpy
wcslen
_strlwr

kernel32

CreateEventA
SetFilePointer
VirtualFree
IsBadReadPtr
CreateFileA
GetFileSize
ReadFile
CloseHandle
VirtualAlloc
Sleep
DeleteFileW
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
GetLastError
GetCurrentProcessId

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 723B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ