alsignup_101029b[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

alsignup_101029b.exe
Size

12KB
MD5

5eab6edf5f7d69167b11ce5397ca52e8
SHA1

b7fbe58cbd486252029416f213b1cc7a0e3c88a8
SHA256

08ca2967e30903f992635b95bab1be86698232d46fe9dbd9de14fa3acd0af4c0
SHA512

338e79fe08534d98726cab0fd409cc3c348375a44f2bb4baeaf5e7d38e77356953882f878e364eb4bb819c10c74a64b2bff9383a7b615d2a9c75e55a9022badf
SSDEEP

384:r0x37usOo8Vd64KqBz8E3/ed/ETPRYX1nXFXsxMTnrt:rwaho4KqBz8MZaX1XFXsxA

Score

1^/10

Malware Config

Signatures

Files

alsignup_101029b.exe
.exe windows x86

a98ba709b5b8ac43a9076d7de9f38102

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
WriteFile
GetSystemTime
CloseHandle
GetPrivateProfileStringA
ExitProcess
CreateFileA
CreateDirectoryA

user32

wsprintfA
MessageBoxA

shell32

SHGetSpecialFolderPathA

advapi32

CryptCreateHash
CryptAcquireContextA
CryptGenRandom
CryptGetHashParam
CryptHashData
CryptReleaseContext
CryptDestroyHash

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE