9b213f31e34826f98e9cf2a67a084a4b461076c255b301e3e369d6fa2e3b5ecf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b213f31e34826f98e9cf2a67a084a4b461076c255b301e3e369d6fa2e3b5ecf
Size

43KB
MD5

dad687dc412af095d637fa2fdd6ba113
SHA1

40a9b1a53792d0e9f53cf6dbea40329908549d22
SHA256

9b213f31e34826f98e9cf2a67a084a4b461076c255b301e3e369d6fa2e3b5ecf
SHA512

0036d7e9a02afd314e1587678552aed2b7b4a544d2398f580bd4afed35e77a9e7cdcedcf0bcb266dc6e671feaa027c89792d388e97ee1d58bed7f1e80229e932
SSDEEP

768:07p4EbtDRoV0sptvUeCaDbn68hN7TDcp1n4Lgq:0rbtD+VzeeH3nhhBDc1n4Eq

Score

N/A

Malware Config

Signatures

Files

9b213f31e34826f98e9cf2a67a084a4b461076c255b301e3e369d6fa2e3b5ecf
.exe windows x86

da5addf43d770296cefc2375f8aebb73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CreateMutexA
lstrcmpiA
lstrcatA
GetModuleFileNameA
FreeLibrary
GetCurrentThreadId
ExitProcess
LoadLibraryA
GetCurrentProcessId
lstrcpyA
WaitForSingleObject
CreateProcessA
CreateToolhelp32Snapshot
GetTickCount
GetSystemDirectoryA
CreateThread
GetProcAddress
Sleep

user32

MessageBoxA
wsprintfA
GetMessageA
TranslateMessage
DispatchMessageA
PostMessageA

advapi32

RegOpenKeyA
RegCloseKey
RegEnumValueA
RegOpenKeyExA

msvcrt

fgets
_except_handler3
strchr
_itoa
fgetws
fopen

Sections

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ