d2d4407e401ed42e79c9de7db80ce586a045134be5644f4e5b7bf5a8d286a146 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d2d4407e401ed42e79c9de7db80ce586a045134be5644f4e5b7bf5a8d286a146
Size

197KB
MD5

03ea875801c7272e6847f797f66f9a23
SHA1

1d734d40439902ce728fae2d5885befd347ace11
SHA256

d2d4407e401ed42e79c9de7db80ce586a045134be5644f4e5b7bf5a8d286a146
SHA512

9e4e3f083e92dd7fb6ab690b92dda56d8fb0692161096c72e2980dacbd8eff30f8010937141ae97d56a6c3a5744edfac77386dcbabc90e466a93c90bb66e1d54
SSDEEP

3072:jTdoZcEV79a80bENBKrk8qD36qk6ZzG5V2P9wN2klPz5CD:jkcE7KuBSk8q+qk6ZzG5UuN5P9CD

Score

N/A

Malware Config

Signatures

Files

d2d4407e401ed42e79c9de7db80ce586a045134be5644f4e5b7bf5a8d286a146
.exe windows x86

847bbec2fd71cf3b9fc68600c82c1774

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
LoadLibraryA
CreateFileA
CloseHandle
ExitProcess
GetCurrentProcess
LCMapStringA

user32

CloseWindow
wsprintfA
CharLowerBuffA
SetWindowLongA
CreateWindowExA

advapi32

RegCreateKeyA
RegSetValueA
RegDeleteKeyA
RegEnumValueA
RegEnumKeyA
RegCloseKey
RegOpenKeyA
RegDeleteValueA
RegQueryValueA

Sections

.text
Size: 152KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ