bdb2461d1a9292ac9848dc1978ee2060bf424680102009d1d97c4ad0e9c2b464 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdb2461d1a9292ac9848dc1978ee2060bf424680102009d1d97c4ad0e9c2b464
Size

96KB
MD5

e2b4e9c2efde1be1c5f2eda4b9fb8899
SHA1

95730b5a495a2723acc8a6d9b44286e7d5b546cf
SHA256

bdb2461d1a9292ac9848dc1978ee2060bf424680102009d1d97c4ad0e9c2b464
SHA512

159c0b6aa2433fc000f16ed1f1f2f716dc0497c935be3f1e7c5ac96a6c11d744e65b16440571554a4ac41bce597cc7063923ba51b378649b7ea6ec7d0a95b3cd
SSDEEP

1536:ITw/B5VFqY/fh5wLe4jzI8i72D2scA4wV14lymkjQVCvzy3kiZjOdFptL9/Y4b11:ITw/B5VFqY/JCe4jz3A2D2BbkjQVCr+Y

Score

N/A

Malware Config

Signatures

Files

bdb2461d1a9292ac9848dc1978ee2060bf424680102009d1d97c4ad0e9c2b464
.exe windows x86

d5f1dc4ec9124fb0c47299b440e91cb6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
CloseHandle
DisconnectNamedPipe
InterlockedExchangeAdd
LockResource
SetVolumeLabelA
GetCommandLineA
GetStartupInfoA
ExitProcess

Sections

.xtext
Size: 4KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

WEIJUNLI
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ