e6dd2faea02142217304f3c3b685c3eb41c4c3931a8e602f148c043bcc4124c8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e6dd2faea02142217304f3c3b685c3eb41c4c3931a8e602f148c043bcc4124c8
Size

205KB
MD5

4fb621aeeed625440f5a4782114e1798
SHA1

daefcd274da75deb5f7d9ac89645c0e35dff2357
SHA256

e6dd2faea02142217304f3c3b685c3eb41c4c3931a8e602f148c043bcc4124c8
SHA512

ec2f6e67b3128d7e79d7e31c4bba54c145b7d348d50e7dcd85ad1a20cac7bb10723a5c5e41290eca74e3c8a4e3f94ca45ff87444171b5c6ba08cc8d024af5783
SSDEEP

3072:G+pdJpg99zuW0e1qxmlxlCzMn/RAez+DAMi0qUH08DPfAfUjGitCDcPaotepMJd7:rpdvSV3xlXn5+UMdqUHfbfkvqPaotPX7

Score

N/A

Malware Config

Signatures

Files

e6dd2faea02142217304f3c3b685c3eb41c4c3931a8e602f148c043bcc4124c8
.exe windows x86

d129dab2b563578f2a987d5787ddfbcf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
LoadLibraryA
LCMapStringA
ExitProcess
CreateFileA
GetCurrentProcess
CloseHandle

user32

CreateWindowExA
CharLowerBuffA
SetWindowLongA
wsprintfA
CloseWindow

advapi32

RegCloseKey
RegDeleteKeyA
RegEnumKeyA
RegDeleteValueA
RegCreateKeyA
RegQueryValueA
RegOpenKeyA
RegEnumValueA
RegSetValueA

Sections

.text
Size: 163KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ