0bb2b5e14b6cb1ecb6944b35560fb2a8e45b1c88cfcc591996d2ea6b1245ee9b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0bb2b5e14b6cb1ecb6944b35560fb2a8e45b1c88cfcc591996d2ea6b1245ee9b
Size

212KB
MD5

085166069a73761a6c2ef65861e864b0
SHA1

c265f80cb59ee3062114efdb7727ba5ec2752761
SHA256

0bb2b5e14b6cb1ecb6944b35560fb2a8e45b1c88cfcc591996d2ea6b1245ee9b
SHA512

00e7d381ea53115a600eb30af04241c920052f163fdbd2366419edb2740ae71f8ebb7c8f189f4e310ec22c9a4b457ee1a72354a8ff50dc726aa77ce15988a8c8
SSDEEP

3072:GBtoL0oPf38lLUjZsamJIp16NFdrRkCU3jp73QCg+hccNcY:Xwkf38VIpgFJU3l73QCgYccNc

Score

N/A

Malware Config

Signatures

Files

0bb2b5e14b6cb1ecb6944b35560fb2a8e45b1c88cfcc591996d2ea6b1245ee9b
.exe windows x86

f224e495d0c67cfa70c4d1f6be842297

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetProcessHeap
VirtualAlloc
VirtualProtect
VirtualFree
IsBadReadPtr
GetProcAddress
LoadLibraryA
HeapFree
FreeLibrary
LockResource
LoadResource
SizeofResource
FindResourceA
GetStringTypeA
LCMapStringW
HeapReAlloc
RtlUnwind
RaiseException
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
IsBadWritePtr
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
WriteFile
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
LCMapStringA
GetStringTypeW

user32

wsprintfA

Exports

Exports

Ip

Sections

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ