effe810400b8218b6ac3a7aecdc637d1280d25e60d714b50d6d46a3fa9c020cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

effe810400b8218b6ac3a7aecdc637d1280d25e60d714b50d6d46a3fa9c020cc
Size

115KB
MD5

6def093e7585a1e28162e312e60d643d
SHA1

af275fbaaf99ad6f4a1454cd96d4b85fcf9244ce
SHA256

effe810400b8218b6ac3a7aecdc637d1280d25e60d714b50d6d46a3fa9c020cc
SHA512

65f9f0e751a378f4369cf52c772de06bdb367309e90a5c4af3deed4911038828b65c946c9aafb4c10d35816a6e8d9c39d410dd9f6f25a59152e8f569ecbe12b7
SSDEEP

1536:C6VaBh4RN6wXSvLuZRZSnnjSA7fkOFNMUgf71MHnOm2Ae3ywROUSZUpiLaQX:Cdh0YwXSvLuDcnn/PNSAOmgiwoU6t

Score

N/A

Malware Config

Signatures

Files

effe810400b8218b6ac3a7aecdc637d1280d25e60d714b50d6d46a3fa9c020cc
.exe windows x86

1f1fdd28fe15c270fde70aa73a677d5c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
CreateFileA
GetACP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetModuleFileNameA
GetOEMCP
GetSystemTimeAsFileTime
InterlockedIncrement
QueryPerformanceCounter
Sleep
VirtualAlloc
lstrlenA

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 446B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 580B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ