b94f98fe4a72a927fe6f42f604bc99f3c4df50ef45ce07239439988feb82271e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b94f98fe4a72a927fe6f42f604bc99f3c4df50ef45ce07239439988feb82271e
Size

46KB
MD5

8cd62d6077fea9afdc39e961bbd98432
SHA1

2bba7f12f88ab13f81e38dc96cbb1f179d77e51e
SHA256

b94f98fe4a72a927fe6f42f604bc99f3c4df50ef45ce07239439988feb82271e
SHA512

1768ffbe803fbff80243513e73c86c9662e3ca957cfb26180d795ba942fbdcd2a65335027b2359155a89d1f4c48c17f02040e3bd5bf3b797bae11be09e2d4b0e
SSDEEP

768:9Ezpn1qnDFZH3vJhmY08yHkdZDOk9Wi8Ff0J+C5:9EPqnDFhvJhmY08yEdZDOkJ1

Score

N/A

Malware Config

Signatures

Files

b94f98fe4a72a927fe6f42f604bc99f3c4df50ef45ce07239439988feb82271e
.exe windows x86

18d97d14c143971f97598ac7864c6717

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
GetUserDefaultLangID
GetCurrentThreadId
GetStartupInfoA
QueryPerformanceCounter
GetSystemDirectoryA
GetCurrentDirectoryA
GetSystemTimeAsFileTime
GetLocalTime
IsValidCodePage
GetACP
GetCPInfo
InterlockedIncrement
GetProcAddress
VirtualAlloc
VirtualProtect
IsValidLocale
GetThreadLocale
GetProcessHeap
GetUserDefaultLCID
GetCurrentProcess
LoadLibraryA
GetModuleHandleA
GetCurrentThread
IsBadReadPtr
IsBadWritePtr
GetComputerNameA
GetConsoleTitleA
GetConsoleOutputCP
GetSystemInfo
GetTimeZoneInformation
GetTickCount
IsDBCSLeadByte
GetWindowsDirectoryA
GetDiskFreeSpaceExA
GetVolumeInformationA
GetLogicalDriveStringsA
ExitThread

user32

IsCharAlphaA
InSendMessage
GetDoubleClickTime
GetForegroundWindow
IsWindow
GetSysColor
GetActiveWindow
GetAsyncKeyState
GetDesktopWindow
GetKeyboardType
IsCharLowerA
OemKeyScan

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE