bc7f39ddb98f4a44aa77dfac76f38b04fcde45d8f16b2a27e10c7432defcaf82 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc7f39ddb98f4a44aa77dfac76f38b04fcde45d8f16b2a27e10c7432defcaf82
Size

6KB
MD5

9f25c3a0d217b3644675031033a3bbd0
SHA1

b4b9cd4aeda00c84c69b06e79a669c0646c5996f
SHA256

bc7f39ddb98f4a44aa77dfac76f38b04fcde45d8f16b2a27e10c7432defcaf82
SHA512

63c907bad08326f29fb465eac4272722e9523eb22a81699b2ac4143dc44e4f447bd19aee8a9ab027657285d17bad61326869ac2e02dabe23474f6ecfc4c7ab3b
SSDEEP

96:e5CJdC9e6pgJpb7XNLLzcOqZfRwcMrFzqx/0HH:e5fM8gj71LzcOepiFzqx8H

Score

N/A

Malware Config

Signatures

Files

bc7f39ddb98f4a44aa77dfac76f38b04fcde45d8f16b2a27e10c7432defcaf82
.exe windows x86

590da15f1ec22d68fbdac911697245dc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetLastError
GetProcessHeap
Process32Next
lstrcmpiA
Process32First
CreateToolhelp32Snapshot
DeleteFileA
GetModuleHandleA
CreateFileA
lstrlenA
GetTempFileNameA
GetTempPathA
GetTickCount
Sleep
ExitProcess
VirtualAlloc
GetCurrentProcess
WriteFile
VirtualAllocEx

advapi32

LookupPrivilegeValueA
AdjustTokenPrivileges
OpenProcessToken

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 230B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ