b96e7145634f970b6ac960bbe4698d9664c8f14037fa6135d133ac93f7dc7c27 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b96e7145634f970b6ac960bbe4698d9664c8f14037fa6135d133ac93f7dc7c27
Size

70KB
MD5

c98817dd2c696cff7e433b063fd9e101
SHA1

d18bdc9c16ff7a0b0c38a2b415c32cba373e6e93
SHA256

b96e7145634f970b6ac960bbe4698d9664c8f14037fa6135d133ac93f7dc7c27
SHA512

8126135dfa48e70e693211705f882b040e885ddb8c2442acfe0dc1a5c00e31381b9dbd7da40f9849438409664f39a473942c55376a4676ac0fd8103813337115
SSDEEP

1536:/3bjR+Rc0U5l0l1jrEkTU+I8M2v6lFwKJPnCWn4:z2vjrnU8M2v6lFVPjn4

Score

N/A

Malware Config

Signatures

Files

b96e7145634f970b6ac960bbe4698d9664c8f14037fa6135d133ac93f7dc7c27
.dll windows x86

d20ddf5cc4c73a4e56433ff8922a37f0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
lstrlenA
VirtualFree
GetProcAddress
LoadLibraryA
VirtualAlloc
GlobalFree
GlobalReAlloc
GlobalSize
GlobalAlloc
CloseHandle
CreateThread
VirtualProtect
ReadFile
GetFileSize
CreateFileA
GetLastError
CreateMutexA
GetCurrentProcessId
WaitForSingleObject
OpenMutexA
DeleteFileA
GetTempPathA
lstrcmpiA
GetModuleFileNameA
lstrcpyA
GetSystemDirectoryA
lstrcatA
GetTickCount
GetModuleHandleA

user32

wsprintfA

msvcrt

getc
putc
strstr
fwrite
fopen
fclose

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 622B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ