31f7ef7b4312064165e103d566c0c59869d781d0625245cad84efe3deae85c45 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

31f7ef7b4312064165e103d566c0c59869d781d0625245cad84efe3deae85c45
Size

335KB
MD5

73ae37174dda856ccccf070a8eabb9c9
SHA1

2ed61e143fbfd74e443f98ce3569ac3f8f5562b6
SHA256

31f7ef7b4312064165e103d566c0c59869d781d0625245cad84efe3deae85c45
SHA512

a8be647bdd152f8b9643814dbd000d7da6f1f394a22b44a82fb5ddea6a809da82fac697b723abf9bad66336f4c03f984e0a4b9dc7a30091bc112812b87ea29d1
SSDEEP

6144:NnBi3k5RrK4YrQBLxk2ur1t6+JsYptkERMxCkU5wZib7wDAxu6DaJx1epUW:lX5RLY81k2ur1t6WvWEqxDZIwG7OJx1o

Score

N/A

Malware Config

Signatures

Files

31f7ef7b4312064165e103d566c0c59869d781d0625245cad84efe3deae85c45
.exe windows x86

d6a022763f44013440a820232d928b0b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
ExitProcess
GetModuleHandleA

user32

GetKeyboardType

advapi32

RegQueryValueExA

Sections

pec1
Size: 329KB - Virtual size: 420KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE