49c71111a77e6aaa460036d19810c0f158df24e535181d936434ca6ed8492edb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49c71111a77e6aaa460036d19810c0f158df24e535181d936434ca6ed8492edb
Size

31KB
MD5

00b19040cc7074d9f0e6983479c0496a
SHA1

8242f29bae5e63c4a7c1e0fd9d11921c9e0ffa40
SHA256

49c71111a77e6aaa460036d19810c0f158df24e535181d936434ca6ed8492edb
SHA512

ae29a3224e1c90832faaeb06a9bc7c6965af19e6f42433a54d236877d0c4dca8a1411e121451c6f986894b54216186325b5a05f8700db1379943f08d57e23dc4
SSDEEP

768:eH/XUAzpaC5H1+eOC4NBHFv06gfbLg8h:K/XZz91QBzFs6cLg8h

Score

N/A

Malware Config

Signatures

Files

49c71111a77e6aaa460036d19810c0f158df24e535181d936434ca6ed8492edb
.exe windows x86

7322fed6b267583ef146e74c1369a607

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
ExitProcess
GetStartupInfoA
ReadConsoleOutputA
SetStdHandle
GetShortPathNameW
DeviceIoControl
GlobalHandle
CreateFileW
GlobalWire
SystemTimeToFileTime
Module32Next
ExpandEnvironmentStringsW
GetStringTypeExA
SetConsoleCursor
CreateSemaphoreA
DelayLoadFailureHook
WaitNamedPipeW
LocalFlags
ReadConsoleOutputA

Sections

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ