4c95a3f63e726d94d9f8fb22b68df7c82fad87c64ff5de5ea8707e48c07c136c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c95a3f63e726d94d9f8fb22b68df7c82fad87c64ff5de5ea8707e48c07c136c
Size

41KB
MD5

63f7eddbedd6936058a375670b6b86a0
SHA1

bf35369a459c252e056d879bb7290b468815e774
SHA256

4c95a3f63e726d94d9f8fb22b68df7c82fad87c64ff5de5ea8707e48c07c136c
SHA512

1ac61739ae2a001b7ea1fac57e0bffa62ba5c1918dea399d4a1f5501174183d64d567e3870b90d0a05a4eab25282d9b11b1f814da40f16e97571aa14ece1a94c
SSDEEP

768:2CkG1MneVHMR6h8wBoT+41ar8+C2in9GD3MCfVc8euNHwGDTVf:lk0MnwV2wBoT+4n+Lk9GAYNeGQGD5

Score

N/A

Malware Config

Signatures

Files

4c95a3f63e726d94d9f8fb22b68df7c82fad87c64ff5de5ea8707e48c07c136c
.exe windows x86

bd227ba966c127e93fe82f25f211eaca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
VirtualAlloc
GetProcAddress
ExitProcess
LoadLibraryExA
GetModuleHandleA
VirtualProtect
GetModuleFileNameA
HeapAlloc
GetProcessHeap
HeapFree

user32

wsprintfA
MessageBoxA

Sections

.data
Size: 34KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ex_cod
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE