ec29ee6d676759ee9f2a87c0113e360a6a5b0270ab8192418e603350d9995e0b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec29ee6d676759ee9f2a87c0113e360a6a5b0270ab8192418e603350d9995e0b
Size

396KB
MD5

ece26bbbf4d6de7b4b12ef20fb4c592f
SHA1

973bad01adfc58060b6e5c01ff1b7f65c2ef6b4a
SHA256

ec29ee6d676759ee9f2a87c0113e360a6a5b0270ab8192418e603350d9995e0b
SHA512

0e0fdd91cb0dc72f6b7b953071694b27ebbe128b92cc734d629e25a9a7d02132274dcd9f49a2e75d5a7761fbb99581bd3dbca5026e75faf4ae50ab0a50a31c38
SSDEEP

6144:we5cNrzPkZw/valn/xUFdc2r+DbTYU2CzJMnu7pTREs73mD11jlm5bctlwS5TWv6:5+nMO/i/Edc2r+vcWzJ6+EP5W59h0

Score

N/A

Malware Config

Signatures

Files

ec29ee6d676759ee9f2a87c0113e360a6a5b0270ab8192418e603350d9995e0b
.exe windows x86

4069d76d475292a24d08e3c76ba2e9e1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
LCMapStringA
CloseHandle
LoadLibraryA
CreateFileA
GetCurrentProcess
ExitProcess

user32

CreateWindowExA
SetWindowLongA
CharLowerBuffA
CloseWindow
wsprintfA

advapi32

RegEnumKeyA
RegEnumValueA
RegQueryValueA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyA
RegSetValueA
RegCreateKeyA

Sections

.text
Size: 376KB - Virtual size: 380KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ