bc355e434226d7a8c59a3ec39ae54c4dff4f042f9cdd17eb27889a55975852af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc355e434226d7a8c59a3ec39ae54c4dff4f042f9cdd17eb27889a55975852af
Size

22KB
MD5

8b1ca91162f6dece87c5c5a81ffc9f41
SHA1

2bd96906ffcace0f51f901f457c9f099566eeced
SHA256

bc355e434226d7a8c59a3ec39ae54c4dff4f042f9cdd17eb27889a55975852af
SHA512

d2eb6b40a55695db1d28881997d4e8ec6a1adcd7502ee9893f460319c61248303b7b5e73073c70df23009b63d366bba1e550e3d0aa72406d6123b6ac14754276
SSDEEP

384:2cYnt/jYsdsB0AT+8hbnE+LU/pgtXt3K8MtnNjSNWlcN9FxMpUa5Y/:21nt/jiB0/8VnEp/oK8UVJcN/xitY/

Score

N/A

Malware Config

Signatures

Files

bc355e434226d7a8c59a3ec39ae54c4dff4f042f9cdd17eb27889a55975852af
.dll windows x86

d5ccb19341016c0e2a376e92647cacc9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
lstrlenA
CloseHandle
CreateFileA
CreateProcessA
DeleteFileA
ExitProcess
GetModuleHandleA
GetShortPathNameA
GetTempPathA
GetThreadContext
GlobalAlloc
lstrcpynA
MoveFileA
ReadFile
ResumeThread
SetFilePointer
SetThreadContext
VirtualAllocEx
WriteFile
WriteProcessMemory
lstrcatA

shell32

ShellExecuteA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 214B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ