ed8ca4208d8bac803c5275bcce2d18719ad6e0c8c8fccd6ed346cf8823634c9c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed8ca4208d8bac803c5275bcce2d18719ad6e0c8c8fccd6ed346cf8823634c9c
Size

40KB
MD5

b1f2dc49f667aa6fb78e54e33ea4d85d
SHA1

b1c6a4a3ba9d80d506fc133d504982d03e5e86f7
SHA256

ed8ca4208d8bac803c5275bcce2d18719ad6e0c8c8fccd6ed346cf8823634c9c
SHA512

81bddf9821e2e7771184dd190c3b7a6d81d888979a02c5c78fff5b5b7f90ecaabdfa271c7820ad0ade86ef47231b767b14ff0dacddf8e308311a2bf934b64edf
SSDEEP

768:k0uZXY1E0Ogg6WCNze+CtC45fj2QnU/l6a:kvQElaz9Cn5fcl6

Score

N/A

Malware Config

Signatures

Files

ed8ca4208d8bac803c5275bcce2d18719ad6e0c8c8fccd6ed346cf8823634c9c
.exe windows x86

8954bb71f3624cf9125a36c2363e4bdf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WinExec
GetProcAddress
LoadLibraryA
CloseHandle
CreateFileA
CopyFileA
DeleteFileA
MoveFileA
GetStringTypeA
LCMapStringW
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetLastError
WriteFile
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
HeapReAlloc
HeapAlloc
TerminateProcess
GetCurrentProcess
HeapSize
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapFree
SetStdHandle
FlushFileBuffers
SetEndOfFile
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
VirtualAlloc
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
LCMapStringA
GetStringTypeW

shell32

SHGetSpecialFolderPathA

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE