8fccb77617164a12c42bf8856084b6977e5588a43679fbe055882d2684299a53 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8fccb77617164a12c42bf8856084b6977e5588a43679fbe055882d2684299a53
Size

188KB
MD5

7b2135b600f2b30434429bedad980687
SHA1

0f226df1a820a8c0b6d1675d3092c16e51d2f055
SHA256

8fccb77617164a12c42bf8856084b6977e5588a43679fbe055882d2684299a53
SHA512

79509f6d8f62d6249f2363e1e7f62327535ca00d88bee8aaadaacea09d74f74b86b0f843d2bf9f0d87f09241fca3843a0487d4543a4773b72316c3d77dd935f7
SSDEEP

3072:yHm+PHruBZv/vep+FKBra5mEBmnRaVrN8CljucnECdSKEQWvQ1l13e1vFYGwFjYU:yxyf2p+IdsU8NVEFvYRuTYGOjYMz

Score

N/A

Malware Config

Signatures

Files

8fccb77617164a12c42bf8856084b6977e5588a43679fbe055882d2684299a53
.exe windows x86

166c79146ea8a6981adf285462588c1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
LoadLibraryA
CloseHandle
CreateFileA
LCMapStringA
ExitProcess
GetCurrentProcess

user32

CreateWindowExA
wsprintfA
SetWindowLongA
CharLowerBuffA
CloseWindow

advapi32

RegQueryValueA
RegDeleteValueA
RegCreateKeyA
RegDeleteKeyA
RegEnumKeyA
RegCloseKey
RegOpenKeyA
RegEnumValueA
RegSetValueA

Sections

.text
Size: 170KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ