eb743e4cfce5a493cd232a7247de51dc7cec9931dae517184170cefbfc1c6019 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb743e4cfce5a493cd232a7247de51dc7cec9931dae517184170cefbfc1c6019
Size

68KB
MD5

03ef4c613de3e45c108f8a3f69fa01ca
SHA1

6bdaf9d3123d710dd0466907d3c52fdbfe1a7b20
SHA256

eb743e4cfce5a493cd232a7247de51dc7cec9931dae517184170cefbfc1c6019
SHA512

50cfeb1884c57c96ed4bb5f1a45c32a97858fd6fb6faabb21b93fd0474d5e83e19afdebf09f5ca73c6a9c1565d2cc73ebff6f0512744df4c751e0e393e540691
SSDEEP

1536:KVzISYxxbHJA5IlEthMljdPm2e0F7rm1JLTaMqCD:IvYxxbHJsIpm2e0F21laTS

Score

N/A

Malware Config

Signatures

Files

eb743e4cfce5a493cd232a7247de51dc7cec9931dae517184170cefbfc1c6019
.exe windows x86

305cd5d9008ec1d082466c3c47783e16

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynA
LocalReAlloc
LocalFree
LocalAlloc
lstrlenA
WriteFile
GetStdHandle
lstrcpyA
GetEnvironmentVariableA
GetDriveTypeA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
ReleaseMutex
WaitForSingleObject
ExitProcess
lstrcmpiA
ExpandEnvironmentStringsA
GetFileSize
SetFilePointer
ReadFile
SearchPathA
GetFullPathNameA
CreateProcessA
CloseHandle
GetExitCodeProcess
FreeEnvironmentStringsA
GetEnvironmentStrings
FindClose
FindFirstFileA
FindNextFileA
lstrcatA
GetFileAttributesA
CreateFileA
CopyFileA
DeleteFileA
MoveFileExA
RemoveDirectoryA
MoveFileA
CreateDirectoryA
CreatePipe
SetStdHandle
GetWindowsDirectoryA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetCommandLineA
CreateMutexA

msvcr71

strspn
memcpy
memchr
memset
strrchr
_strnicmp
strcspn
_strlwr
strchr

Sections

.text
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE