5b88e99803bc1775ee6c9d0aaf6960517a534a3a5a6230681670e23a0d461583 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b88e99803bc1775ee6c9d0aaf6960517a534a3a5a6230681670e23a0d461583
Size

63KB
MD5

6fabd96d81200dd7e0ce5a5cebc8c7e9
SHA1

dc517af0ed7b2644082a1d39eef41c6b1492ae57
SHA256

5b88e99803bc1775ee6c9d0aaf6960517a534a3a5a6230681670e23a0d461583
SHA512

2d6d970bf32d62166df1049f2264046c370b26a8d7b711f13284e59eb945033b4a1a328ef9a1ce4d7178a4717c63f0064a3f30b9273ab89cb13b1ca82b21cbd3
SSDEEP

768:A0ik/3/C32bazsThUip93+ATeouVrYQCNT5JxAgcZd77TFHA/XuAKq+LEu4jK4ee:zHesrp4AqBkQCNd3oN2PwzLaxO4tecW0

Score

N/A

Malware Config

Signatures

Files

5b88e99803bc1775ee6c9d0aaf6960517a534a3a5a6230681670e23a0d461583
.exe windows x86

30f9b00d456c72e5ab2407b1551dd164

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
GetNumaNodeProcessorMask
CreateNlsSecurityDescriptor
FindClose
GetUserGeoID
GetSystemPowerStatus
ReplaceFile
GetSystemRegistryQuota
FreeLibrary
GetCurrentActCtx
FlushInstructionCache

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE