98e440833a2693b71c0e8f0485e81eb818f101897d90d807337e19fc6ebfa1b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98e440833a2693b71c0e8f0485e81eb818f101897d90d807337e19fc6ebfa1b4
Size

168KB
MD5

0602ba9b8c16379eaf5ea5637c91be72
SHA1

56575d7659d3d0e280f19074b9c59a6cb80257d6
SHA256

98e440833a2693b71c0e8f0485e81eb818f101897d90d807337e19fc6ebfa1b4
SHA512

81cc7c643b97c16fab3879d121d5e1a6a2bad71499b7b22cceea901c643d2a8d36f60fda688a72f32a01a702b1e605033acdd3d45f22d015f96d049a317e1487
SSDEEP

3072:REI8YshndQbNqMKneijiuyM5wpXZHqDDp57hytUz8MeZlucnHkmzyjJjHtXDeJJl:PwhskMKneciuJGqDdrzz8MeWcnFyjJj6

Score

N/A

Malware Config

Signatures

Files

98e440833a2693b71c0e8f0485e81eb818f101897d90d807337e19fc6ebfa1b4
.exe windows x86

2bc1095fd1ca0d04e2345011fc84f106

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
CloseHandle
GetCurrentProcess
LoadLibraryA
CreateFileA
ExitProcess
LCMapStringA

user32

wsprintfA
SetWindowLongA
CloseWindow
CharLowerBuffA
CreateWindowExA

advapi32

RegCloseKey
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyA
RegEnumValueA
RegCreateKeyA
RegDeleteValueA
RegQueryValueA
RegSetValueA

Sections

.text
Size: 149KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ