a29611cfa570724c55447dfdff0a017c437150c1852ba7c8f15706e0b13da97f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a29611cfa570724c55447dfdff0a017c437150c1852ba7c8f15706e0b13da97f
Size

11KB
MD5

60771ba42c1b93088ce42d8b2e658876
SHA1

a3e9c04b50088bba24fac40a21c332dfdf60f9ff
SHA256

a29611cfa570724c55447dfdff0a017c437150c1852ba7c8f15706e0b13da97f
SHA512

3ad22c66028a8a7aa2a2ead359174f81719488cc4db61fbac09635f99fef9814d6b32bf742c09598b67629385b5b6dd4066efcb95413e39007a77754062fd52b
SSDEEP

192:RWApOWOHHSr7s3iX48JnIhMCg36oVXQUbXqr/3ir8s4zNMfth6v3:xMDy46nfLXQDr/37s4zNotg

Score

N/A

Malware Config

Signatures

Files

a29611cfa570724c55447dfdff0a017c437150c1852ba7c8f15706e0b13da97f
.exe windows x86

65c05b20c5645f1e1f9f789702c3cc9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryA
HeapAlloc
OpenProcess
Process32First
GetProcessHeap
GetModuleFileNameA
CloseHandle
WinExec
lstrcatA
lstrcmpiA
CreateToolhelp32Snapshot
CopyFileA
Sleep
Process32Next
TerminateProcess

user32

MessageBoxA
wsprintfA

advapi32

RegCloseKey
OpenSCManagerA
EnumServicesStatusA
CloseServiceHandle
RegOpenKeyExA
RegSetValueExA

Sections

.text
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE