cb8c80a33c1f57127e6b1ffc7537674c0b73cd8179ed72e39c53a629f5e6355b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb8c80a33c1f57127e6b1ffc7537674c0b73cd8179ed72e39c53a629f5e6355b
Size

152KB
MD5

900687ed4fa8726ac672c2a8146a3fe3
SHA1

309fb421f88f2cedc18b14cb7c119181a2ad3979
SHA256

cb8c80a33c1f57127e6b1ffc7537674c0b73cd8179ed72e39c53a629f5e6355b
SHA512

ffb843fb3ac3b8f201252927c70e46a512d1c128485969ddf982a9d3d4a1a46bf34059ffbbe37e2ef3f17aef4d37c06478b491304f54d763716050d82a1e0713
SSDEEP

3072:hj7G/82Na1dZyHsKeq+R19eHRK1gBza8suuMJBU:hPapNsdZyb61FaBexMc

Score

N/A

Malware Config

Signatures

Files

cb8c80a33c1f57127e6b1ffc7537674c0b73cd8179ed72e39c53a629f5e6355b
.exe windows x86

f1327359f5a55ff9f00b2383aa0f3fb5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_SYSTEM
IMAGE_FILE_UP_SYSTEM_ONLY
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
CloseHandle
GetCurrentProcess
ExitProcess
CreateFileA
LoadLibraryA
LCMapStringA

user32

wsprintfA
CloseWindow
CreateWindowExA
SetWindowLongA
CharLowerBuffA

advapi32

RegCloseKey
RegDeleteKeyA
RegOpenKeyA
RegDeleteValueA
RegQueryValueA
RegEnumValueA
RegCreateKeyA
RegEnumKeyA
RegSetValueA

Sections

.text
Size: 134KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ