d32b7e592802b47c186587f4e2b6becda11139c62be8e162be8d2c2797270fce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d32b7e592802b47c186587f4e2b6becda11139c62be8e162be8d2c2797270fce
Size

6KB
MD5

d437ce16b1fa6a3814c8ace1b07b49fa
SHA1

06bb278a7b0d325194b2c0911dd86d38a360c0d9
SHA256

d32b7e592802b47c186587f4e2b6becda11139c62be8e162be8d2c2797270fce
SHA512

0857a9a10d9e706a8b9224e9147ce49bcc6cd5cdfa1fac126a2229fd028e8d67175d961971b14a2a1ec2e5203271d8ab2469e56a97ab0f85279cd4ea8451a39b
SSDEEP

96:scB/HAH2zxnpnGf1ZciFWt/WCE/IGCWV9:VBPq6nxGfIii/Wf/PCW/

Score

N/A

Malware Config

Signatures

Files

d32b7e592802b47c186587f4e2b6becda11139c62be8e162be8d2c2797270fce
.exe windows x86

3a0376baf03a6595a55ef0ff453b087c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
CreateThread
WinExec
GetModuleFileNameA
GetProcAddress
LoadLibraryA
lstrcatA
GetWindowsDirectoryA
Sleep
DeleteFileA
GetTickCount
GetTempPathA
CloseHandle
Process32Next
TerminateProcess
OpenProcess
lstrcmpiA
Process32First
CreateToolhelp32Snapshot

user32

MessageBoxA
wsprintfA
PostThreadMessageA
GetMessageA
TranslateMessage
DispatchMessageA

msvcrt

fclose
fopen
fgets
strstr

netapi32

Netbios

Sections

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ