2b0a9491f1d84a77e19819dd7cdbe7f0e8a2f131a6c60aa68427ccddc494dfbd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b0a9491f1d84a77e19819dd7cdbe7f0e8a2f131a6c60aa68427ccddc494dfbd
Size

18KB
MD5

f4944a595459c3fa7fba9dec62700f05
SHA1

1d3468319b2294233fbcc0f320627650fa64f258
SHA256

2b0a9491f1d84a77e19819dd7cdbe7f0e8a2f131a6c60aa68427ccddc494dfbd
SHA512

5549b96b6c7404cb5d90dd7ae7a73eefa5c82b3e1e30dc85b5e475399aa07a7f1c2d9c69026bfa5d7cdb4688f0c25cd26be2b9d065f4dd887e0d2b2d9ec56b85
SSDEEP

384:gJ2z2Pp8tKyh9k7LHz+F9T4qXB4rOrXbLar1YDZmN4wPEpkpU:gJkTtKDLHz+F9T3bXaxcO4wg

Score

N/A

Malware Config

Signatures

Files

2b0a9491f1d84a77e19819dd7cdbe7f0e8a2f131a6c60aa68427ccddc494dfbd
.dll windows x86

112fe8db160a6a3928828e24a2df9294

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetFileSize
GetModuleFileNameA
GetProcAddress
LoadLibraryA
ReadFile
SetFilePointer
Sleep
VirtualAlloc

Exports

Exports

service

Sections

.flat
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 69B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE