aa7885a41bd37d6608923e4b9d6c12793b2289d84262503d1cc117ada1e6f9e6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa7885a41bd37d6608923e4b9d6c12793b2289d84262503d1cc117ada1e6f9e6
Size

19KB
MD5

abfa60a410257ca4dffd5eecb338aa77
SHA1

02f2b50dc743939415e37f5b5d57f3d2e314a10a
SHA256

aa7885a41bd37d6608923e4b9d6c12793b2289d84262503d1cc117ada1e6f9e6
SHA512

a22664d130503a431a70ff8f27ec349076a4cfc4f02373f65f95f5b0d0971c6642b376ce0bfc12b362dc1eb65478fd0c95e8c5f4fcc3dddb5dbe9607b9497577
SSDEEP

384:0ZbmtO1iT3bkCYxFFN6H/hgU8x86r2X8LJTYZOwIq7hEx68rJ3nis:RtOGLkC+j6f18xVLpDrrlnJ

Score

N/A

Malware Config

Signatures

Files

aa7885a41bd37d6608923e4b9d6c12793b2289d84262503d1cc117ada1e6f9e6
.exe windows x86

d95cdbf05803aaf89dcb8157b9058b04

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
CreateFileW
DeleteCriticalSection
DisableThreadLibraryCalls
EnterCriticalSection
FreeLibrary
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
HeapAlloc
InitializeCriticalSectionAndSpinCount
InterlockedExchange
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
ReadFile
VirtualAlloc
lstrcmpiW
lstrlenA
lstrlenW

user32

CharNextW
DefWindowProcW
DestroyWindow
EndDialog
GetClientRect
GetDC
GetDesktopWindow
GetFocus
GetParent
GetSysColor
GetSystemMetrics
GetWindowLongW
InvalidateRect
IsDlgButtonChecked
LoadCursorW
LoadIconW
LoadStringW
PostMessageW
PostQuitMessage
ReleaseDC
SendMessageW
SetCursor

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ