c2422d2bb586f831fa9fff402d76a7d2e2790d581b032efb5091dd603e0c37f6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c2422d2bb586f831fa9fff402d76a7d2e2790d581b032efb5091dd603e0c37f6
Size

1.6MB
MD5

e6e017e07cc0c9ab491020d057b3ebc6
SHA1

500d15963be32096730711f28d8748df8d47d882
SHA256

c2422d2bb586f831fa9fff402d76a7d2e2790d581b032efb5091dd603e0c37f6
SHA512

08d290b06b80b3419577dcc01b25fe597d9b296d4038bd0e777a674d2982356cd77db3552e67f869a65a8d85f5ca39bf47efd22b4dc5fc4271148214fff2f961
SSDEEP

49152:vBDDsAMEoBA0fFFQnpc/bAdID3gfEZPrWj+kG:6ApoBvFQnDg7Pm+kG

Score

N/A

Malware Config

Signatures

Files

c2422d2bb586f831fa9fff402d76a7d2e2790d581b032efb5091dd603e0c37f6
.exe windows x86

d4ff4e9520d2b9d618be12fecec0c0ac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
LoadResource
SizeofResource
FindResourceA
CloseHandle
WriteFile
CreateFileA
GetTempFileNameA
DeleteFileA
Sleep
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetStartupInfoA
LockResource
lstrcpyA
GetCommandLineA
FreeLibrary
GetProcAddress
LoadLibraryA
GetWindowsDirectoryA
GetModuleFileNameA

lz32

LZCopy
LZOpenFileA
LZClose

user32

MessageBoxA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ