d59c87a7a26a7a412e646c826199bc2ccc49e899048afc4ec296b43e020747b7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d59c87a7a26a7a412e646c826199bc2ccc49e899048afc4ec296b43e020747b7
Size

14KB
MD5

e8fe04c69a4b4dad79ae6f78dc3f3419
SHA1

ed0df0e52689fdd489cf9ec4f954cdf4dfa4f9cd
SHA256

d59c87a7a26a7a412e646c826199bc2ccc49e899048afc4ec296b43e020747b7
SHA512

b7e5b475bbf44730eb12916665f47bf4cd4e19bcc3917446367e5b6405dbce6e866ad78df2b2156b3ec0772617d223e0cf60e060486df63477854e0b0c967696
SSDEEP

24:e9GSH4cJ3cyjnWrV0BhV9+5u+MDrJjNQxsBxWIASyUuoEO0t+Qmz9:KYc6yjnN/VA5uZHJ+xsBxW2mEf

Score

N/A

Malware Config

Signatures

Files

d59c87a7a26a7a412e646c826199bc2ccc49e899048afc4ec296b43e020747b7
.exe windows x86

47c1db6ac4bb6e4e715012402499943e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA

kernel32

GetTempPathA
RtlZeroMemory
CloseHandle
CreateFileA
CreateProcessA
ExitProcess
WriteFile
lstrcatA
lstrlenA
GetCommandLineA

Sections

.text
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE