88d51c9bb3e67fbb1ddbf8222005b5b1061e4f44e5e8422e0a69b18bf1576a07 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

88d51c9bb3e67fbb1ddbf8222005b5b1061e4f44e5e8422e0a69b18bf1576a07
Size

309KB
MD5

0754934835ab10547412eaa541dfabf0
SHA1

8a66fe3f66862195c6fc23f9e31e5a88cd85e106
SHA256

88d51c9bb3e67fbb1ddbf8222005b5b1061e4f44e5e8422e0a69b18bf1576a07
SHA512

87ab9ffc256de8b0e970a9303ecc8acd569ccd26c5299ede60c22b6d38610b2bfc8feb67abc4ee6889e1f16829e19947412663cdd53c1e06e02faa5f42f5023b
SSDEEP

6144:WjJxMmxpYoxQjaqp4R2xNt1l2ouO+whe9sgKDFeKAroZ:M0YpZ6r/x1lTuO+whe7xjo

Score

N/A

Malware Config

Signatures

Files

88d51c9bb3e67fbb1ddbf8222005b5b1061e4f44e5e8422e0a69b18bf1576a07
.exe windows x86

ea32fbd79c491ed05579a03a58c6c11d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
GetPrivateProfileSectionA
lstrcpyW
FindResourceW
GetLongPathNameA
WriteFileEx
GetDiskFreeSpaceW
InterlockedIncrement
GetACP
ExitProcess
GetPrivateProfileIntA
GetDiskFreeSpaceW
InterlockedDecrement
LoadLibraryA
GetStringTypeW
VirtualAllocEx
Heap32First
GetModuleHandleW
GetExitCodeProcess
GetCurrentDirectoryA
lstrcmpA
GetPrivateProfileIntA
WaitForSingleObject

apphelp

AllowPermLayer
SdbCreateMsiTransformFile
ApphelpCheckExe
ApphelpCheckIME

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dbg
Size: 304KB - Virtual size: 308KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE