5d5a474f509af4623ce0eb6bdf95762de73914683c75d911574e27e91a8314c6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d5a474f509af4623ce0eb6bdf95762de73914683c75d911574e27e91a8314c6
Size

68KB
MD5

6377728fec54288f49d2e6b95db52fab
SHA1

0a42fedfb49e5d657fe636cbe63dc252defd3037
SHA256

5d5a474f509af4623ce0eb6bdf95762de73914683c75d911574e27e91a8314c6
SHA512

bd4400659787a155fa5d242e3d772cd2d385340c5658a26a87109061cb978c55fecc5c41dbb120555f6cd708405d80afa72cab2d74a5d1aa81ff1c617f96d6d9
SSDEEP

768:OikF5z2teBpi+Ptag1gpcMXJm3DTjOhD+ZxwhdmOQRlI3lEtPLSZDR8o2AdV1BUC:lJ2pimY5oyhdmxR+3lEdLSZF8otV1B8q

Score

N/A

Malware Config

Signatures

Files

5d5a474f509af4623ce0eb6bdf95762de73914683c75d911574e27e91a8314c6
.exe windows x86

04efba2fb99c25056e6f478927bbae37

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadLocale
GetMailslotInfo
PrepareTape
SetFilePointerEx
FatalAppExitA
Sleep
EnterCriticalSection
UnlockFileEx
GetCommandLineA
ExitProcess
GetStartupInfoA
WaitForSingleObjectEx
LockResource
GetConsoleCommandHistoryLengthA
DefineDosDeviceA
InterlockedExchange
GetStringTypeA
ExpungeConsoleCommandHistoryA
CancelWaitableTimer

Sections

ATSEC0
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

ATSEC1
Size: - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

ATSEC2
Size: 45KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ