d4fbee5ee7f5bf35848612f601e7940908858fc6f1c12f8fe4d409b12c6e11cf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d4fbee5ee7f5bf35848612f601e7940908858fc6f1c12f8fe4d409b12c6e11cf
Size

24KB
MD5

5a899ddc87e85aa509238cdb7530fafa
SHA1

ba86f6393c7aa386c93403c60b1d1b4b59bf5d44
SHA256

d4fbee5ee7f5bf35848612f601e7940908858fc6f1c12f8fe4d409b12c6e11cf
SHA512

df61851fe1f12f5abf5d66c2c5f37a1a8e490bcbbd5c5bcb50377bc9e3be787bdf2b3676fb5e64f52774490d8d213dba98217a7b14bd7616073fc5a26ce1fb92
SSDEEP

384:dhHg+/IMx8f+iuREpQib5TXYAUx5ezhJMfWqt1t1wUE10YPk:jg+/Ik8f+iSEpQiVToAUx8zhJMOqwU2/

Score

N/A

Malware Config

Signatures

Files

d4fbee5ee7f5bf35848612f601e7940908858fc6f1c12f8fe4d409b12c6e11cf
.exe windows x86

efe50e910d9fea6074b6229b11194f61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetModuleFileNameA
Sleep
GetModuleHandleA
GetStartupInfoA

user32

RegisterClassExA
PostQuitMessage
PostMessageA
ShowWindow
DefWindowProcA
CreateWindowExA

msvcrt

_exit
_controlfp
rand
fclose
fwrite
fopen
sprintf
__CxxFrameHandler
??3@YAXPAX@Z
_except_handler3
time
??2@YAPAXI@Z
atol
strchr
srand
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1018B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE