56e42342797ca084f288bb205362ee646c51b2aacd31bb2fd8b16378789d47cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

56e42342797ca084f288bb205362ee646c51b2aacd31bb2fd8b16378789d47cc
Size

289KB
MD5

dea7ca52bc0f1af54481c3e10ef1d8c5
SHA1

930b3d4f0da474548b2e81e79a008e5a765cbaac
SHA256

56e42342797ca084f288bb205362ee646c51b2aacd31bb2fd8b16378789d47cc
SHA512

ed7d891b1ce915a98091f5d6e762503e52ab086a89ad775a901a24489c1144b4dfaa78cdf29079ec79e7def6fb20fa987709fa440c8958e29c1bffd0ab4c1030
SSDEEP

6144:7+IhFwMaUFzXrJbCbotbjFxxbL2Vv17+JkRUjnLua/BV9UuJnOiZHTq7xDbeFM:6s7NhXrdCe/EVv18lz3BIuROi1O9eu

Score

N/A

Malware Config

Signatures

Files

56e42342797ca084f288bb205362ee646c51b2aacd31bb2fd8b16378789d47cc
.exe windows x86

0f8b27381140f8bca28a979116419e61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyW
GetStdHandle
lstrcpyW
FileTimeToLocalFileTime
GetCommState
GetStartupInfoW
VirtualAllocEx
lstrcpyW
lstrcpyW
GetModuleFileNameA
SetCurrentDirectoryA
SetLastError
lstrlenW
lstrcpyW
GetProcessHeap
SetConsoleTitleA
GetModuleHandleA
GetVolumePathNameW
IsValidLocale
IsBadStringPtrA
GetLocaleInfoA
CreateEventA
DeleteFileA

termmgr

DllUnregisterServer
DllGetClassObject
DllRegisterServer
DllCanUnloadNow

Sections

.text
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 277KB - Virtual size: 276KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ