f2ebdbbf34b5c7e5d1e1aa5c0a03f762ceb72c97b6212c264456e3a7aed0e504 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f2ebdbbf34b5c7e5d1e1aa5c0a03f762ceb72c97b6212c264456e3a7aed0e504
Size

57KB
MD5

362d9394102b2fa0641786b349f8a7e6
SHA1

1b64134dc12da0e6339bce8f1f9d250315dfd52f
SHA256

f2ebdbbf34b5c7e5d1e1aa5c0a03f762ceb72c97b6212c264456e3a7aed0e504
SHA512

81799e5bbe4e85a2fee4cd7f0b38e15e06a2f355aabc172adc14ea67c1c7a7a37676c76cb5c4ed1aa28487631a42f89b247ba93ffa2fbcd06b2448a6db2b1142
SSDEEP

768:x3lrPxlT3w0XtgmI086s16Rr2Y/i6J0AS1ndnUg/kpOnpkRHn4zPoAH/n7d:7PT3wczlq6Rr28TxuVUzpekegAH/nx

Score

N/A

Malware Config

Signatures

Files

f2ebdbbf34b5c7e5d1e1aa5c0a03f762ceb72c97b6212c264456e3a7aed0e504
.exe windows x86

ed40cb110885278c000215d59af22e43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHGetValueA

kernel32

ResumeThread
DeleteFileA
HeapAlloc
GetProcessHeap
ReadFile
LocalFree
LocalAlloc
MultiByteToWideChar
CopyFileA
GetModuleFileNameA
GetShortPathNameA
ExitProcess
GetExitCodeProcess
WaitForSingleObject
GetTempPathA
VirtualAlloc
CreateProcessA
CloseHandle
WriteFile
CreateFileA
GetTempFileNameA
SetFilePointer

ole32

CoCreateInstance
CoInitialize
CoUninitialize

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 676B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ