f640238a7c3b650c70ecf3f4e002cf25c8e2c4a9bdd01ed5aa208226dba5ecd9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f640238a7c3b650c70ecf3f4e002cf25c8e2c4a9bdd01ed5aa208226dba5ecd9
Size

186KB
MD5

ce8d7deb481c4063d885cf4f651e1fc2
SHA1

178cf0e3aa74a1baf9ee62804477324308ae1d18
SHA256

f640238a7c3b650c70ecf3f4e002cf25c8e2c4a9bdd01ed5aa208226dba5ecd9
SHA512

826ce8f669667ababf180083a8c9f1f2c5868ceeca70d6860294dab9c06256e8fbd686e9f4fbb391f5bf8675c116e036c2d86d308252882f143f45930d5a14d3
SSDEEP

3072:oMALX8gM9a3yVSoL0/2+rsMrKj6uIiNYVe063fGLHjTDquVEaE:oMATM9a3Zom2YSjV3mUWHjTOuVEaE

Score

N/A

Malware Config

Signatures

Files

f640238a7c3b650c70ecf3f4e002cf25c8e2c4a9bdd01ed5aa208226dba5ecd9
.exe windows x86

8041933cbf2d7b561e1f847d0b3621a2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
GetCurrentProcess
CloseHandle
LCMapStringA
LoadLibraryA
CreateFileA
ExitProcess

user32

CreateWindowExA
SetWindowLongA
CloseWindow
CharLowerBuffA
wsprintfA

advapi32

RegSetValueA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyA
RegCreateKeyA
RegCloseKey
RegQueryValueA
RegEnumValueA

Sections

.text
Size: 147KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ