f059eb28912fe1755d20eba827de0b5eae414afad0e63382ed86c91c0cd2a34a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f059eb28912fe1755d20eba827de0b5eae414afad0e63382ed86c91c0cd2a34a
Size

160KB
MD5

8fc581789c96cffa72a054b9a5324d04
SHA1

97cbee02d4015f1089c1650f48721bdd26c22196
SHA256

f059eb28912fe1755d20eba827de0b5eae414afad0e63382ed86c91c0cd2a34a
SHA512

68c2c7cfe173f0ff059bceaebfe8ec9ba781624b175158bdd6569cc85148716dfc398bd7bde0f95011c03a599e01d959302ed7159a3bcedf911a1072170e86fb
SSDEEP

1536:npnaXk07BsLk5wlZnuxR6h4VcWklmM2jH0YF1lAO+2CM24faW:npnaXk09sLXjuxepr2gYLSh2J

Score

N/A

Malware Config

Signatures

Files

f059eb28912fe1755d20eba827de0b5eae414afad0e63382ed86c91c0cd2a34a
.exe windows x86

dc716fe4f9734f96d226af5f778da1b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
GetTickCount
DeleteFileA
VirtualProtect
GetModuleFileNameA
ExitProcess

gdi32

DeleteObject
GetDIBits

advapi32

CloseServiceHandle

user32

MessageBoxA

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE