9d9f66880243da40f105379c28e5f38409298dddcf49762a59035bc58ce63f4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9d9f66880243da40f105379c28e5f38409298dddcf49762a59035bc58ce63f4b
Size

62KB
MD5

b68fe052ce822a2b04947ba2eb47b732
SHA1

2d8bfb1816ab8fdc6c7a47289ce977e6a0a1951a
SHA256

9d9f66880243da40f105379c28e5f38409298dddcf49762a59035bc58ce63f4b
SHA512

57963251b1d76954c4c470bf11400e88835c00e64cc466acec61121a36b88d8a8fc150db1998618e52cb1638b15ce0a87a6f3a9e5173082afc2afb2246982627
SSDEEP

768:6/+GOskZ8Dpwsitji2iI+pKzOe5kwKieno/H6ypz6m94p7Pfw/mZje63iRVEkZsJ:6GQb4CUp5XJy4WmK1diHEkatZmJ75Jg

Score

N/A

Malware Config

Signatures

Files

9d9f66880243da40f105379c28e5f38409298dddcf49762a59035bc58ce63f4b
.exe windows x86

0bf017906c814f5c7460b6487a420001

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadLocale
EnumLanguageGroupLocalesW
WriteProfileStringA
GetNamedPipeInfo
LZSeek
InterlockedExchange
AttachConsole
RemoveLocalAlternateComputerNameW
GetConsoleHardwareState
SetConsoleNumberOfCommandsA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE